Cross-site scripting (XSS) vulnerability in the Integration Solution Console in the Administration Console in IBM WebSphere Application Server 7.0 before 7.0.0.23 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.
| Date Added | Due Date | Vulnerability Name | Required Action |
|---|---|---|---|
| N/A |
| Type | Version | Base score | Base severity | Vector |
|---|---|---|---|---|
| Primary | 2.0 | 4.3 | MEDIUM | AV:N/AC:M/Au:N/C:N/I:P/A:N |
| Hyperlink | Source | Resource |
|---|---|---|
| http://www.ibm.com/support/docview.wss?uid=swg1PM52274 | psirt@us.ibm.com | N/A |
| http://www.ibm.com/support/docview.wss?uid=swg21595172 | psirt@us.ibm.com | Vendor Advisory |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/74044 | psirt@us.ibm.com | N/A |
| http://www.ibm.com/support/docview.wss?uid=swg1PM52274 | af854a3a-2127-422b-91ae-364da2661108 | N/A |
| http://www.ibm.com/support/docview.wss?uid=swg21595172 | af854a3a-2127-422b-91ae-364da2661108 | Vendor Advisory |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/74044 | af854a3a-2127-422b-91ae-364da2661108 | N/A |