CVE-2015-0158
CVE-2015-0158 corresponds to a cross-site scripting (XSS) vulnerability in the IBM BPM Coach NG framework. The root cause is improper validation of user-supplied input, allowing a remote attacker to trigger script execution in a user’s browser via a specially crafted URL. Affected products includ...