CVE-2014-3010

Currently unrated

Key Information:

Vendor: IBM
Status: Websphere Service Registry And Repository
Vendor: CVE Published:; 30 May 2014

Summary

Cross-site scripting (XSS) vulnerability in the Web UI in IBM WebSphere Service Registry and Repository (WSRR) 6.2, 6.3 before 6.3.0.6, 7.0 before 7.0.0.6, 7.5 before 7.5.0.5, and 8.0 before 8.0.0.3 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.

References

http://www-01.ibm.com/support/docview.wss?uid=swg1IV56254

vendor-advisoryx_refsource_AIXAPAR

http://secunia.com/advisories/58949

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/92999

vdb-entryx_refsource_XF

Timeline

Vulnerability published
May 30, 2014
Vulnerability Reserved
Apr 29, 2014