Lucene search
+L

5 matches found

prion
prion
added 2009/10/20 5:30 p.m.20 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the ReqWeb Help feature aka the Web Client Help system in IBM Rational RequisitePro 7.1.0 allow remote attackers to inject arbitrary web script or HTML via 1 the operation parameter to ReqWebHelp/advanced/workingSet.jsp, or the 2 searchWord, 3...

4.3CVSS5.9AI score0.03451EPSS
Exploits1References6Affected Software1
nessus
nessus
added 2009/10/20 12:0 a.m.17 views

IBM Rational RequisitePro ReqWebHelp Multiple XSS

IBM Rational RequisitePro is installed on the remote host. The installed version contains two JSP scripts that are affected by cross-site scripting vulnerabilities. Specifically, it fails to sanitize input to the 'searchWord', 'maxHits', 'scopedSearch', and 'scope' parameters of 'searchView.jsp'...

4.3CVSS5.7AI score0.03451EPSS
Exploits1References2
exploitdb
exploitdb
added 2009/10/15 12:0 a.m.29 views

IBM Rational RequisitePro 7.10 / ReqWebHelp - Multiple Cross-Site Scripting Vulnerabilities

Attackers can exploit these issues by enticing an unsuspecting victim into following a malicious URI. The following example URIs are available: http://www.example.com/ReqWebHelp/advanced/workingSet.jsp?operation=add/--/scriptscriptalert289325/script&workingSet=...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2009/10/15 12:0 a.m.28 views

IBM Rational RequisitePro 7.10 - ReqWeb Help Feature 'ReqWebHelp/basic/searchView.jsp' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/36721/info IBM Rational RequisitePro is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an...

7.4AI score
Exploits0
zdt
zdt
added 2009/10/15 12:0 a.m.19 views

IBM Rational RequisitePro 7.10 and ReqWebHelp Multiple CSS

Exploit for jsp platform in category web applications =========================================================================== IBM Rational RequisitePro 7.10 and ReqWebHelp Multiple Cross Site Scripting =========================================================================== Attackers can...

7.1AI score
Exploits0
Rows per page
Query Builder