Cross-site scripting (XSS) vulnerability in the Active Content Filtering component in IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0.0 through 7.0.0.2 CF29, 8.0.0 before 8.0.0.1 CF17, and 8.5.0 before CF06 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: ibm
Published: 2015-07-14T14:00:00
Updated: 2017-09-21T09:57:01
Reserved: 2015-02-19T00:00:00
Link: CVE-2015-1917
JSON object: View
NVD Information
Status : Modified
Published: 2015-07-14T14:59:00.967
Modified: 2017-09-22T01:29:02.810
Link: CVE-2015-1917
JSON object: View
Redhat Information
No data.
CWE