CVE-2015-7402
IBM Cúram Social Program Management 6.1 is affected by CVE-2015-7402 (XSS) due to improper validation of user-supplied input. An already authenticated remote attacker can exploit a specially crafted URL to execute arbitrary script in the victim’s browser within the site’s context, potentially ste...