2 matches found
Security Bulletin: Cross-site scripting vulnerability found in Sterling Order Management (CVE-2013-6322)
Abstract Sterling Order Management is vulnerable to a reflected cross-site scripting attack which could lead to unauthorized access through the injected scripts. Content VULNERABILITY DETAILS: CVEID: CVE-2013-6322 DESCRIPTION: Sterling Order Management allows the injection of a script which will ...
CVE-2013-6322
IBM Sterling Order Management (Sterling Selling and Fulfillment Suite) is affected by CVE-2013-6322 as a reflected XSS in 8.0 before HF128 and 8.5 before HF93. The vulnerability allows remote authenticated users to inject scripts/HTML via unspecified vectors, potentially impacting data integrity....