3 matches found
Cross site scripting
IBM Emptoris Sourcing 9.5 - 10.1.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 128172...
CVE-2017-1447
IBM Emptoris Sourcing 9.5 - 10.1.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 128172...
CVE-2017-1447
CVE-2017-1447 affects IBM Emptoris Sourcing 9.5.x through 10.1.x. The vulnerability is a cross-site scripting flaw in the Web UI that allows an attacker to embed arbitrary JavaScript, potentially altering functionality and enabling credential disclosure within a trusted session. Affected componen...