IBM B2B Advanced Communications 1.0.0.0 and IBM Multi-Enterprise Integration Gateway 1.0.0.1 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 244076.
CPE | Name | Operator | Version |
---|---|---|---|
b2b_advanced_communications | ge | 1.0 | |
b2b_advanced_communications | lt | 1.0.0.8 | |
multi-enterprise_integration_gateway | eq | 1.0.0.1 |