Cross site scripting

2015-05-2514:59:00

PRIOn knowledge base

www.prio-n.com

5.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

27.4%

JSON

Cross-site scripting (XSS) vulnerability in IBM Curam Social Program Management 6.0 SP2 before EP26, 6.0.4 before 6.0.4.5 iFix10, 6.0.5 before 6.0.5.6, and 6.0.5.5a before 6.0.5.8 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.

CPENameOperatorVersion
curam_social_program_managementeq6.0.5597
curam_social_program_managementeq6.0.4.3
curam_social_program_managementeq6.0 sp2
curam_social_program_managementeq6.0.4.2
curam_social_program_managementeq6.0.5.7
curam_social_program_managementeq6.0.4.0
curam_social_program_managementeq6.0.4.1
curam_social_program_managementeq6.0.5.6
curam_social_program_managementeq6.0.5.0
curam_social_program_managementeq6.0.5.3

Name	Operator	Version
curam_social_program_management	eq	6.0.5597
curam_social_program_management	eq	6.0.4.3
curam_social_program_management	eq	6.0 sp2
curam_social_program_management	eq	6.0.4.2
curam_social_program_management	eq	6.0.5.7
curam_social_program_management	eq	6.0.4.0
curam_social_program_management	eq	6.0.4.1
curam_social_program_management	eq	6.0.5.6
curam_social_program_management	eq	6.0.5.0
curam_social_program_management	eq	6.0.5.3