2 matches found
Security Bulletin: Cross-site scripting vulnerability in IBM Business Process Manager (BPM) Process Inspector (CVE-2014-6173)
Summary Insufficient user input validation in IBM Business Process Manager's Process Inspector can lead to a cross-site scripting exposure. Vulnerability Details CVE ID: CVE-2014-6173 CVSS Base Score: 3.5 CVSS Temporal Score: See for the current score CVSS Environmental Score: Undefined CVSS...
CVE-2014-6173
CVE-2014-6173 concerns a cross-site scripting (XSS) vulnerability in IBM Business Process Manager (BPM) related to the Process Inspector . IBM’s bulletin details that insufficient input validation allows a remote, authenticated attacker to exploit a specially crafted URL to execute script in a vi...