CVE-2014-0932
CVE-2014-0932 describes a Cross-site scripting (XSS) vulnerability in IBM Sterling Order Management 8.5 prior to HF105 and Sterling Selling and Fulfillment Foundation 9.0 prior to HF85. The issue allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL. The affec...