3 matches found
IBM Eclipse Help System (IEHS) Cross Site Scripting
IBM Eclipse Help System IEHS Cross-Site Scripting Vulnerability + Author: Filippo Roncari + Target: IBM Eclipse Help System IEHS + Version: 6.1.0 = 6.1.0.6, 6.1.5 = 6.1.5.3, 7.0 = 7.0.0.2, 8.0 8.0.0.1 + Vendor: http://www.ibm.com + Accessibility: Remote + Severity: Medium + CVE: CVE-2014-0917 +...
CVE-2014-0917
Cross-site scripting XSS vulnerability in IBM Eclipse Help System IEHS in IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0 through 7.0.0.2 CF27, and 8.0 before 8.0.0.1 CF06 allows remote attackers to inject arbitrary web script or HTML via a crafted URL...
CVE-2014-0917
IBM Eclipse Help System (IEHS) is vulnerable to Cross-Site Scripting due to improper validation of user input in the IEHS HTML contents referenced by WebSphere Portal. A crafted URL can inject arbitrary JavaScript, affecting IEHS versions 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7....