Cross-Site Scripting Vulnerability in IBM WebSphere ILOG Rule Team Server
CVE-2011-1371

Currently unrated

Key Information:

Vendor: IBM
Status: Websphere Ilog Rule Team Server
Vendor: CVE Published:; 28 October 2011

Summary

An XSS vulnerability exists in the content/error.jsp component of IBM WebSphere ILOG Rule Team Server version 7.1.1. This flaw enables remote attackers to inject arbitrary web scripts or HTML, potentially compromising the integrity and security of user interactions through the exploitation of an Unknown Error document. It is essential for users of this product to implement security measures to mitigate potential exploits related to this vulnerability.

References

http://www.ibm.com/support/docview.wss?uid=swg1RS00810

vendor-advisoryx_refsource_AIXAPAR

https://exchange.xforce.ibmcloud.com/vulnerabilities/71005

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Oct 28, 2011
Vulnerability Reserved
Mar 10, 2011