2 matches found
Security Bulletin: Fix available for Stored Cross Site Scripting (XSS) Vulnerability in IBM Cúram Social Program Management (CVE-2017-1739)
Summary IBM Cúram Social Program Management is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker might exploit this vulnerability by getting a victim to browse to the stored information and their browser will execute the script...
CVE-2017-1739
IBM Cúram Social Program Management is affected by CVE-2017-1739. A cross-site scripting vulnerability exists in IBM Cúram SPM 7.0.0.0–7.0.1.1, 6.2.0.0–6.2.0.6, 6.1.0.0–6.1.1.6, and 6.0.5.0–6.0.5.10 due to improper validation of user input in the Web UI, allowing an attacker to inject arbitrary J...