4 matches found
IBM Websphere Portal - Persistent Cross-Site Scripting
IBM Websphere Portal - Persistent Cross-Site Scripting IBM WebSphere Portal Stored Cross-Site Scripting Vulnerability CVE-2014-0910 + Author: Filippo Roncari + Target: IBM WebSphere Portal + Version: 7.0, 6.1.5, 6.1.0 + Vendor: http://www.ibm.com + Accessibility: Remote + Severity: Medium + CVE:...
IBM Websphere Portal - Persistent Cross-Site Scripting
IBM WebSphere Portal Stored Cross-Site Scripting Vulnerability CVE-2014-0910 + Author: Filippo Roncari + Target: IBM WebSphere Portal + Version: 7.0, 6.1.5, 6.1.0 + Vendor: http://www.ibm.com + Accessibility: Remote + Severity: Medium + CVE: CVE-2014-0910 + Full Advisory:...
IBM WebSphere Portal Unspecified XSS (PI18845)
The version of IBM WebSphere Portal on the remote host is affected by an unspecified cross-site scripting vulnerability due to improper user input validation. An attacker can exploit this issue to execute code in the security context of a user's browser to steal authentication cookies...
CVE-2014-0910
IBM WebSphere Portal is affected by a stored XSS in the Web Content Management component across versions 6.1.0.0–6.1.0.6 CF27, 6.1.5.0–6.1.5.3 CF27, and 7.0.0–7.0.0.2 CF28. The vulnerability allows remote authenticated users to inject arbitrary JavaScript via unspecified vectors. Root cause is im...