3 matches found
Security Bulletin: Potential Security Vulnerabilities fixed in IBM WebSphere Application Server 7.0.0.33
Summary Cross reference list for security vulnerabilites fixed in IBM WebSphere Application Server 7.0.0.33 and IBM WebSphere Application Server Hypervisor Edition 7.0.0.33 Vulnerability Details CVE ID:CVE-2013-6323 PI04777 and PI04880 DESCRIPTION: The Administration Console of IBM WebSphere...
Security Bulletin: Cross-site scripting in Oauth (CVE-2013-6738)
Summary Cross-site scripting in Oauth Vulnerability Details CVE ID: CVE-2013-6738 DESCRIPTION: OAuth /authorize endpoint will return an invalid query param in the response. This allows a script to be injected in the response. CVSS: CVSS Base Score: 4.3 CVSS Temporal Score: See for the current sco...
CVE-2013-6738
CVE-2013-6738 is an XSS vulnerability in IBM SmartCloud Analytics Log Analysis (OAuth endpoint) and in IBM WebSphere Application Server OAuth functionality. The initial entry states that IBM SmartCloud Analytics Log Analysis 1.1 and 1.2 prior to 1.2.0.0-CSI-SCALA-IF0003 can be exploited to inject...