2 matches found
Security Bulletin: Multiple Cross-Site scripting vulnerabilities in IBM Business Process Manager Process Portal (CVE-2015-8524)
Summary Due to insufficient user input escaping IBM Business Process Manager Process Portal is vulnerable to Cross-Site scripting. Vulnerability Details CVEID: CVE-2015-8524 DESCRIPTION: IBM Business Process Manager is vulnerable to reflected cross-site scripting, which is caused by the improper...
CVE-2015-8524
CVE-2015-8524 is an XSS vulnerability in IBM BPM Process Portal. It affects IBM Business Process Manager 8.5.0.x through 8.5.0.2, 8.5.5.x through 8.5.5.0, and 8.5.6.x through 8.5.6.2, where improper escaping of user input in Process Portal allows a remote attacker to inject arbitrary web script o...