Cross-Site Scripting Vulnerability in IBM Workplace Products
CVE-2008-6105

Currently unrated

Key Information:

Vendor: IBM
Status: Workplace For Business Controls And Reporting; Workplace Web Content Management
Vendor: CVE Published:; 10 February 2009

Summary

A cross-site scripting (XSS) vulnerability exists in IBM Workplace for Business Controls and Reporting 2.x and IBM Workplace Web Content Management 6.x. This flaw allows remote attackers to inject arbitrary web scripts or HTML into web pages viewed by users, potentially leading to unauthorized actions or data exposure. The vulnerability arises from unvalidated input that can be exploited through various unspecified vectors, thereby compromising the integrity of the affected applications.

References

http://www.securityfocus.com/bid/29625

vdb-entryx_refsource_BID

http://www.securitytracker.com/id?1020236

vdb-entryx_refsource_SECTRACK

http://www-1.ibm.com/support/docview.wss?uid=swg1PJ33180

vendor-advisoryx_refsource_AIXAPAR

Timeline

Vulnerability published
Feb 10, 2009
Vulnerability Reserved
Feb 10, 2009