Cross-Site Scripting Vulnerabilities in IBM Eclipse Help System by IBM
CVE-2013-0464

Currently unrated

Key Information:

Vendor: IBM
Status: Spss Data Collection; Eclipse Help System
Vendor: CVE Published:; 3 June 2013

Summary

The IBM Eclipse Help System contains multiple vulnerabilities that allow remote attackers to inject arbitrary web scripts or HTML through crafted URLs. This exploitation could lead to unauthorized actions on behalf of users, the theft of sensitive information, or the compromise of user interactions with applications reliant on the affected software. These vulnerabilities underscore the importance of robust input validation and the implementation of security measures to mitigate XSS risks.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/81060

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg21637954

x_refsource_CONFIRM

http://secunia.com/advisories/54971

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Jun 3, 2013
Vulnerability Reserved
Dec 16, 2012