Cross-Site Scripting Vulnerability in IBM SPSS Analytical Decision Management
CVE-2013-4048

Currently unrated

Key Information:

Vendor: IBM
Status: Spss Analytical Decision Management
Vendor: CVE Published:; 16 September 2013

Summary

A cross-site scripting (XSS) vulnerability exists in IBM SPSS Analytical Decision Management versions 6.1 prior to IF1, 6.2 prior to IF1, and 7.0 prior to FP1 IF6. This flaw permits remote authenticated users to inject malicious web scripts or HTML into web pages. Such an exploit could allow attackers to compromise user sessions or manipulate web content, posing significant risks to data integrity and user trust.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21648929

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/86441

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Sep 16, 2013
Vulnerability Reserved
Jun 7, 2013