2 matches found
CVE-2009-4052
IBM Rational Application Developer for WebSphere Software before 7.0.0.10 and Rational Software Architect before 7.0.0.10 contain multiple XSS vulnerabilities in the JSF Widget Library Runtime. The issues allow remote attackers to inject arbitrary web script or HTML via vectors involving the JSF ...
CVE-2015-7439
CVE-2015-7439 is an IBM InfoSphere Data Architect (IDA) XSS vulnerability described across connected IBM advisories. The issue arises from improper validation of user-supplied input, allowing a remote attacker to inject arbitrary script or HTML by following a crafted URL. Affected products includ...