Cross-Site Scripting Vulnerabilities in IBM Algorithmics RICOS
CVE-2014-0870

Currently unrated

Key Information:

Vendor

IBM
Status
Algorithmics
Algo Credit Limits
Vendor
CVE Published:
7 July 2014

What is CVE-2014-0870?

Multiple cross-site scripting vulnerabilities exist in IBM Algorithmics RICOS, impacting versions 4.5.0 through 4.7.0 before 4.7.0.03 FP5. Attackers can exploit these vulnerabilities by injecting arbitrary web scripts via several parameters, including Message, ButtonsetClass, MBName, Init, Name, StoreName, and STYLESHEET in different JSP files. This can lead to unauthorized actions and access to sensitive information within affected applications.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://packetstormsecurity.com/files/127304/IBM-Algorithm...
x_refsource_MISC
https://exchange.xforce.ibmcloud.com/vulnerabilities/90944
vdb-entryx_refsource_XF
http://www.securityfocus.com/archive/1/532598/100/0/threaded
mailing-listx_refsource_BUGTRAQ

EPSS Score

8% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.