Vulnerabilities

CVE-2014-8902

by Fred · 18/12/2014

Cross-site scripting (XSS) vulnerability in the Blog Portlet in IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0.0 through 7.0.0.2 CF29, 8.0.0 through 8.0.0.1 CF14, and 8.5.0 before CF04 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.

Date published : 2014-12-18

http://www-01.ibm.com/support/docview.wss?uid=swg1PI29956

http://www-01.ibm.com/support/docview.wss?uid=swg21692107

Similar

Tags: Cybersecurity Alert