3 matches found
IBM WebSphere Portal 8.0.0.x < 8.0.0.1 CF15 / 8.5.0.0 < 8.5.0.0 CF05 Multiple XSRF / XSS (PI34987, PI33329, PI35228)
The version of IBM WebSphere Portal installed on the remote host is 8.0.0.x prior to 8.0.0.1 Cumulative Fix 15 / 8.5.0.0 prior to 8.5.0.0 Cumulative Fix 05. It is, therefore, affected by multiple vulnerabilities : - An unspecified XSRF vulnerability exists due to improper validation of...
CVE-2015-0177
Cross-site scripting XSS vulnerability in IBM WebSphere Portal 8.5.0 before CF05 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...
CVE-2015-0177
CVE-2015-0177 is an XSS vulnerability in IBM WebSphere Portal. The issue affects WebSphere Portal 8.5.0 before CF05 (and related 8.0.x/CF patches per Nessus note) where a crafted URL enables remote authenticated users to inject arbitrary script or HTML in a user’s browser. The root cause is impro...