CVE-2011-0486

Currently unrated

Key Information:

Vendor
IBM
Status
Cognos 8 Business Intelligence
Vendor
CVE Published:
18 January 2011

Summary

Cross-site scripting (XSS) vulnerability in cognos.cgi in IBM Cognos 8 Business Intelligence (BI) 8.4.1 before FP1 allows remote attackers to inject arbitrary web script or HTML via the pathinfo parameter.

References

http://www.securityfocus.com/bid/45781
vdb-entryx_refsource_BID
http://securitytracker.com/id?1024954
vdb-entryx_refsource_SECTRACK
https://exchange.xforce.ibmcloud.com/vulnerabilities/64660
vdb-entryx_refsource_XF

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.