Cross-Site Scripting Vulnerability in IBM FileNet Workplace Products
CVE-2016-5981
5.4MEDIUM
Key Information:
- Vendor
IBM
- Vendor
- CVE Published:
- 25 November 2016
What is CVE-2016-5981?
A cross-site scripting (XSS) vulnerability exists in IBM FileNet Workplace XT and FileNet Workplace (Application Engine) due to improper configuration of the RegExpSecurityFilter and ScriptSecurityFilter. This misconfiguration permits remote attackers to inject arbitrary web scripts or HTML through various vectors, potentially leading to unauthorized actions or data breaches.