Cross-Site Scripting in IBM OpenPages GRC Platform
CVE-2014-8916

Currently unrated

Key Information:

Vendor: IBM
Status: Openpages Grc Platform
Vendor: CVE Published:; 3 October 2015

What is CVE-2014-8916?

The vulnerability in IBM OpenPages GRC Platform allows remote authenticated users to exploit a cross-site scripting flaw, permitting them to inject arbitrary web scripts or HTML via specially crafted URLs. This could lead to unauthorized actions performed by users inadvertently engaging with malicious content, hence raising significant security concerns for affected deployments.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21963358

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 3, 2015
Vulnerability Reserved
Nov 14, 2014