Cross-Site Scripting Vulnerability in IBM InfoSphere Optim Data Growth for Oracle E-Business Suite
CVE-2013-2955

Currently unrated

Key Information:

Vendor: IBM
Status: Infosphere Optim Data Growth For Oracle E-business Suite
Vendor: CVE Published:; 27 May 2013

Summary

The vulnerability in IBM InfoSphere Optim Data Growth for Oracle E-Business Suite allows an attacker with authenticated access to inject arbitrary scripts or HTML through a specially crafted URL. This leads to a potential stored XSS issue, compromising the integrity and confidentiality of user data accessed through the application. Affected versions include 6.x, 7.x, and 9.x prior to 9.1.0.3, highlighting the importance of timely updates and security best practices to mitigate risks associated with such vulnerabilities.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21637444

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/83664

vdb-entryx_refsource_XF

Timeline

Vulnerability published
May 27, 2013
Vulnerability Reserved
Apr 12, 2013