2 matches found
CVE-2014-3096
Cross-site scripting XSS vulnerability in IBM Curam Social Program Management before 6.0.5.5a allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...
CVE-2014-3096
Summary (CVE-2014-3096): IBM Cúram Social Program Management is vulnerable to cross-site scripting (XSS) due to improper validation of user-supplied input. A remote, authenticated attacker can craft a URL to execute script in a victim’s browser within the hosting site’s context, potentially steal...