CVE-2013-6322

Currently unrated

Key Information:

Vendor: IBM
Status: Sterling Selling And Fulfillment Foundation
Vendor: CVE Published:; 28 November 2013

Summary

Cross-site scripting (XSS) vulnerability in Sterling Order Management in IBM Sterling Selling and Fulfillment Suite 8.0 before HF128 and 8.5 before HF93 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

References

http://www-01.ibm.com/support/docview.wss?uid=swg1IC97745

vendor-advisoryx_refsource_AIXAPAR

http://www-01.ibm.com/support/docview.wss?uid=swg21656906

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/88902

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Nov 28, 2013
Vulnerability Reserved
Oct 31, 2013