Multiple Cross-Site Scripting Vulnerabilities in IBM HTTP Server

CVE-2011-1360

Summary

IBM HTTP Server versions 2.0.47 and earlier are affected by multiple cross-site scripting vulnerabilities, enabling remote attackers to inject arbitrary web scripts or HTML. This is accomplished through vectors associated with unspecified documentation files located in the manual directory (1) manual/ibm/ and (2) htdocs/*/manual/ibm/. Successful exploitation could lead to significant security risks for users accessing affected documentation.

References