2 matches found
Security Bulletin: IBM Business Process Manager (BPM) Vulnerable URLs (CVE-2013-0581)
Abstract When a dashboard is opened or a service is executed, a malicious attacker can intercept network requests from the client. Then, the attacker can modify the URL parameters of the request so that malicious code can be executed within the client browser. Content VULNERABILITY DETAILS:...
CVE-2013-0581
CVE-2013-0581 (IBM BPM) affects IBM Business Process Manager Standard/Express/Advanced 7.5.1.x, 8.0.0.x, 8.0.1.x (before FP1). Root cause: multiple cross-site scripting (XSS) vulnerabilities enabling remote authenticated users to inject arbitrary web script or HTML via four vectors: ProcessPortal...