Cross-Site Scripting Vulnerability in IBM Security SiteProtector System
CVE-2015-0168

Currently unrated

Key Information:

Vendor: IBM
Status: Security Siteprotector System
Vendor: CVE Published:; 25 May 2015

Summary

A Cross-site scripting (XSS) vulnerability exists in IBM Security SiteProtector System versions prior to 3.0.0.7, 3.1.0.4, and 3.1.1.2. This flaw allows remote authenticated users to inject arbitrary web scripts or HTML code through unspecified vectors, potentially compromising user interactions and the integrity of web applications.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21699470

x_refsource_CONFIRM

Timeline

Vulnerability published
May 25, 2015
Vulnerability Reserved
Nov 18, 2014