2 matches found
Security Bulletin: IBM InfoSphere Data Quality Console is vulnerable to a Cross-Site Scripting (XSS) attack when adding new project connections (CVE-2014-3071)
Summary IBM InfoSphere Data Quality Console is vulnerable to a Cross-Site Scripting XSS attack while adding new project connections. An attacker can trick a signed on user to clicking on a link, and then the attacker could obtain the user's cookie and act with the user's privileges in the...
CVE-2014-3071
The CVE-2014-3071 vulnerability affects IBM InfoSphere Data Quality Console (11.3). The issue is a cross-site scripting (XSS) flaw that can be triggered when adding a new project connection, allowing an attacker to craft a link that could be used by an authenticated user to execute arbitrary scri...