CVE-2015-0168
IBM Security SiteProtector System is affected by CVE-2015-0168 (XSS) affecting versions 3.0 before 3.0.0.7, 3.1 before 3.1.0.4, and 3.1.1 before 3.1.1.2. The vulnerability arises from improper validation that could allow remote authenticated users to inject scripts, potentially stealing cookies b...