CVE-2014-0951CVE-2014-0951

Affected configuration(s):

cpe:/a:ibm:websphere_portal:6.1.0.6:cf27
cpe:/a:ibm:websphere_portal:6.1.5.3:cf27
cpe:/a:ibm:websphere_portal:7.0.0.0
cpe:/a:ibm:websphere_portal:7.0.0.0:cf001
cpe:/a:ibm:websphere_portal:7.0.0.1
cpe:/a:ibm:websphere_portal:7.0.0.1:cf002
cpe:/a:ibm:websphere_portal:7.0.0.1:cf003
cpe:/a:ibm:websphere_portal:7.0.0.1:cf004
cpe:/a:ibm:websphere_portal:7.0.0.1:cf005
cpe:/a:ibm:websphere_portal:7.0.0.1:cf006
cpe:/a:ibm:websphere_portal:7.0.0.1:cf007
cpe:/a:ibm:websphere_portal:7.0.0.1:cf008
cpe:/a:ibm:websphere_portal:7.0.0.1:cf009
cpe:/a:ibm:websphere_portal:7.0.0.1:cf010
cpe:/a:ibm:websphere_portal:7.0.0.1:cf019
cpe:/a:ibm:websphere_portal:7.0.0.2
cpe:/a:ibm:websphere_portal:7.0.0.2:cf011
cpe:/a:ibm:websphere_portal:7.0.0.2:cf012
cpe:/a:ibm:websphere_portal:7.0.0.2:cf013
cpe:/a:ibm:websphere_portal:7.0.0.2:cf014
cpe:/a:ibm:websphere_portal:7.0.0.2:cf015
cpe:/a:ibm:websphere_portal:7.0.0.2:cf016
cpe:/a:ibm:websphere_portal:7.0.0.2:cf017
cpe:/a:ibm:websphere_portal:7.0.0.2:cf018
cpe:/a:ibm:websphere_portal:7.0.0.2:cf019
cpe:/a:ibm:websphere_portal:7.0.0.2:cf020
cpe:/a:ibm:websphere_portal:7.0.0.2:cf021
cpe:/a:ibm:websphere_portal:7.0.0.2:cf022
cpe:/a:ibm:websphere_portal:7.0.0.2:cf23
cpe:/a:ibm:websphere_portal:7.0.0.2:cf24
cpe:/a:ibm:websphere_portal:7.0.0.2:cf25
cpe:/a:ibm:websphere_portal:7.0.0.2:cf26
cpe:/a:ibm:websphere_portal:7.0.0.2:cf27
cpe:/a:ibm:websphere_portal:8.0.0.0
cpe:/a:ibm:websphere_portal:8.0.0.0:cf01
cpe:/a:ibm:websphere_portal:8.0.0.0:cf02
cpe:/a:ibm:websphere_portal:8.0.0.0:cf03
cpe:/a:ibm:websphere_portal:8.0.0.0:cf04
cpe:/a:ibm:websphere_portal:8.0.0.0:cf05
cpe:/a:ibm:websphere_portal:8.0.0.1
cpe:/a:ibm:websphere_portal:8.0.0.1:cf04
cpe:/a:ibm:websphere_portal:8.0.0.1:cf05
cpe:/a:ibm:websphere_portal:8.0.0.1:cf07
cpe:/a:ibm:websphere_portal:8.0.0.1:cf08
cpe:/a:ibm:websphere_portal:8.0.0.1:cf09
cpe:/a:ibm:websphere_portal:8.0.0.1:cf10
cpe:/a:ibm:websphere_portal:8.0.0.1:cf11
cpe:/a:ibm:websphere_portal:8.0.0.1:cf12

Date published: 2014-05-22T07:14:14.517-04:00

Date last modified: 2017-08-28T21:34:21.967-04:00

CVSS Score: 4.3

Principal attack vector: NETWORK

Complexity:  MEDIUM

Reference URL: http://www-01.ibm.com/support/docview.wss?uid=swg1PI15690

Summary: Cross-site scripting (XSS) vulnerability in FilterForm.jsp in IBM WebSphere Portal 7.0 before 7.0.0.2 CF28 and 8.0 before 8.0.0.1 CF12 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.