3 matches found
Security Bulletin: Cross-site scripting vulnerability in IBM Business Process Manager (BPM) Process Center (CVE-2015-0101)
Summary Insufficient user input validation in IBM Business Process Manager's Process Center can lead to a cross-site scripting exposure. Vulnerability Details CVEID: CVE-2015-0101 DESCRIPTION: IBM Business Process Manager Process Centeris vulnerable to cross-site scripting, caused by improper...
CVE-2015-0101
Cross-site scripting XSS vulnerability in IBM Business Process Manager Standard 7.5.x before 7.5, 8.0.x before 8.0.1, 8.5.x before 8.5.5; IBM Business Process Manager Express 7.5.x before 7.5, 8.0.x before 8.0.1, 8.5.x before 8.5.5; and IBM Business Process Manager Advanced 7.5.x before 7.5, 8.0....
CVE-2015-0101
The CVE-2015-0101 issue is an XSS vulnerability in IBM Business Process Manager across Standard, Express, and Advanced lines (versions 7.5.x, 8.0.x, 8.5.x). It stems from insufficient input validation in BPM’s Process Center, allowing a remote attacker to craft a URL that executes script in a vic...