Cross-Site Scripting Vulnerability in IBM WebSphere Portal Product
CVE-2011-2754

Currently unrated

Key Information:

Vendor: IBM
Status: Websphere Portal; Web Content Manager
Vendor: CVE Published:; 17 July 2011

Summary

The XSS vulnerability in the PageBuilder2 theme of IBM WebSphere Portal versions prior to 7.0.0.1 CF006 allows attackers to inject malicious web scripts or HTML. This risk can be exploited through unspecified methods, leading to potential unauthorized actions or data exposure on affected web applications.

References

http://secunia.com/advisories/45106

third-party-advisoryx_refsource_SECUNIA

http://www.ibm.com/support/docview.wss?uid=swg21503959

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jul 17, 2011