CVE-2015-7457
IBM WebSphere Portal is affected by a cross-site scripting (XSS) vulnerability, CVE-2015-7457, in versions 8.0.x prior to 8.0.0.1 CF20 and 8.5.x prior to 8.5.0.0 CF09. An attacker can inject arbitrary script or HTML by crafting a URL, potentially compromising a user session. The provided sources ...