Cross-Site Scripting Issue in Sun Java System Portal Server

CVE-2008-6192

Summary

Multiple cross-site scripting (XSS) vulnerabilities exist in unspecified Portlets within Sun Java System Portal Server versions 7.0 and 7.1. These vulnerabilities enable remote attackers to inject arbitrary web scripts or HTML through unknown vectors, potentially compromising the security of web applications and user data.

References