CVE-2011-5065

Sažetak

Cross-site scripting (XSS) vulnerability in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.41 allows remote attackers to inject arbitrary web script or HTML via vectors related to web messaging.

Reference

http://secunia.com/advisories/46469
http://www.securityfocus.com/bid/51559
http://www-01.ibm.com/support/docview.wss?uid=swg1PM37840
http://www-01.ibm.com/support/docview.wss?uid=swg1PM49872
http://www-01.ibm.com/support/docview.wss?uid=swg27007951
https://exchange.xforce.ibmcloud.com/vulnerabilities/72336

CVSS

Base:	4.3
Impact:	2.9
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:N/AC:M/Au:N/C:N/I:P/A:N

Zadnje važnije ažuriranje

29-08-2017 - 01:30

Objavljeno

15-01-2012 - 03:55