Cross-Site Scripting in IBM OpenPages GRC Platform
CVE-2014-8916

Currently unrated

Key Information:

Vendor: IBM
Status: Openpages Grc Platform
Vendor: CVE Published:; 3 October 2015

Summary

The vulnerability in IBM OpenPages GRC Platform allows remote authenticated users to exploit a cross-site scripting flaw, permitting them to inject arbitrary web scripts or HTML via specially crafted URLs. This could lead to unauthorized actions performed by users inadvertently engaging with malicious content, hence raising significant security concerns for affected deployments.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21963358

x_refsource_CONFIRM

Timeline

Vulnerability published
Oct 3, 2015
Vulnerability Reserved
Nov 14, 2014