Cross site scripting

2010-09-2022:00:00

PRIOn knowledge base

www.prio-n.com

5.9 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

44.0%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in the Workplace (aka WP) component in IBM FileNet P8 Application Engine (P8AE) 4.0.2.x before 4.0.2.3-P8AE-FP003 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters to .jsp pages.

CPENameOperatorVersion
filenet_p8_application_engineeq4.0.2 2
filenet_p8_application_engineeq4.0.2
filenet_p8_application_engineeq4.0.2 1

Name	Operator	Version
filenet_p8_application_engine	eq	4.0.2 2
filenet_p8_application_engine	eq	4.0.2
filenet_p8_application_engine	eq	4.0.2 1

References

download2.boulder.ibm.com/sar/CMA/IMA/00y3y/0/readme-4027-P8AE-FP007.htm

www-01.ibm.com/support/docview.wss?uid=swg1PJ35679