Cross-Site Scripting Vulnerability in IBM Sterling Selling and Fulfillment Suite
CVE-2013-6322

Currently unrated

Key Information:

Vendor: IBM
Status: Sterling Selling And Fulfillment Foundation
Vendor: CVE Published:; 28 November 2013

Summary

An XSS vulnerability exists in the IBM Sterling Selling and Fulfillment Suite that can allow remote authenticated users to inject arbitrary web scripts or HTML through unspecified vectors. This flaw poses a significant risk, as it can lead to exploitation by attackers to manipulate web sessions, steal sensitive information, or alter content displayed to users. It is essential for users of affected versions to apply the necessary patches to safeguard their systems.

References

http://www-01.ibm.com/support/docview.wss?uid=swg1IC97745

vendor-advisoryx_refsource_AIXAPAR

http://www-01.ibm.com/support/docview.wss?uid=swg21656906

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/88902

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Nov 28, 2013
Vulnerability Reserved
Oct 31, 2013