Multiple Cross-Site Scripting Vulnerabilities in IBM InfoSphere Master Data Management

CVE-2013-0477

Summary

Multiple cross-site scripting vulnerabilities exist within IBM InfoSphere Master Data Management products, allowing remote authenticated users to inject malicious content. This flaw facilitates phishing attacks through unspecified means, potentially compromising users' sensitive information. The affected versions are those prior to Fix Pack 1 for the Collaborative Edition, as well as specific versions of the Master Data Management Server for Product Information Management.

References