Required CVE Record Information
Description
Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 8.x before 8.0.0.1 CF8 allows remote authenticated users to inject arbitrary web script or HTML by leveraging incorrect IBM Connections integration.
References 5 Total
- http://www-01.ibm.com/support/docview.wss?uid=swg21655634
- www-01.ibm.com: PM95802 vendor-advisory
- exchange.xforce.ibmcloud.com: was-portal-cve20135378-xss(86929) vdb-entry
- www-01.ibm.com: PM97593 vendor-advisory
- www-01.ibm.com: PM95881 vendor-advisory
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 5 Total
- http://www-01.ibm.com/support/docview.wss?uid=swg21655634 x_transferred
- www-01.ibm.com: PM95802 vendor-advisoryx_transferred
- exchange.xforce.ibmcloud.com: was-portal-cve20135378-xss(86929) vdb-entryx_transferred
- www-01.ibm.com: PM97593 vendor-advisoryx_transferred
- www-01.ibm.com: PM95881 vendor-advisoryx_transferred