2 matches found
Security Bulletin: Various security issues exist in WebSphere Service Registry and Repository version 8.0
Summary This bulletin describes a variety of minor security issues that have been found and fixed in WebSphere Service Registry and Repository version 8.0 Vulnerability Details CVE ID: CVE-2014-6153 DESCRIPTION: WSRR WEBUI ISSUES A COOKIE WHICH IS NOT DECLARED SSL ONLY. CVSS CVSS Base Score: 2.6...
CVE-2014-6179
CVE-2014-6179 is a DOM-based XSS in the Web UI of IBM WebSphere Service Registry and Repository (WSRR). Affected are WSRR 7.5.x before 7.5.0.4 and 8.0.x before 8.0.0.2, enabling remote attackers to inject arbitrary web script or HTML via unspecified vectors. Mitigation is to apply fixes: for 7.5,...