2 matches found
Security Bulletin: Cross site scripting vulnerability in IBM InfoSphere Master Data Management Reference Data Management Hub (CVE-2014-0850)
Summary The IBM InfoSphere Master Data Management Reference Data Management RDM Hub is vulnerable to cross-site scripting Vulnerability Details CVE ID: CVE-2014-0850 DESCRIPTION: An attacker can trick a user into inserting a mal-formed URL address into a browser or clicking on a mal-formed URL li...
CVE-2014-0850
The IBM bulletin confirms CVE-2014-0850 affects InfoSphere Master Data Management Reference Data Management Hub versions 10.1 and 11.0, with an XSS flaw allowing remote authenticated users to inject script via a crafted URL. Root cause: unvalidated URL input in the RDM Hub surface. Impact: possib...