Cross-Site Scripting Vulnerability in IBM UrbanCode Build
CVE-2015-1983

Currently unrated

Key Information:

Vendor: IBM
Status: Urbancode Build
Vendor: CVE Published:; 4 October 2015

What is CVE-2015-1983?

A cross-site scripting vulnerability exists in the Projects page of IBM UrbanCode Build version 6.1.x prior to 6.1.1. This flaw enables remote authenticated users to inject arbitrary web scripts or HTML by exploiting crafted URLs, potentially compromising the integrity of the application and user data. Proper validation and sanitization of user inputs are essential to mitigate this risk.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21964316

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 4, 2015
Vulnerability Reserved
Feb 19, 2015