CVE-2014-3010
Cross-site scripting (XSS) vulnerability in the Web UI in IBM WebSphere Service Registry and Repository (WSRR) 6.2, 6.3 before 6.3.0.6, 7.0 before 7.0.0.6, 7.5 before 7.5.0.5, and 8.0 before 8.0.0.3 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.
View on NVDSeverity
N/A
EPSS
Probability of exploitation (next 30 days): 0.0026 (0.3%)
Percentile: 48.9%
EPSS: 2026-05-06
Affects
ibm:websphere_service_registry_and_repositoryTechnical description
Cross-site scripting (XSS) vulnerability in the Web UI in IBM WebSphere Service Registry and Repository (WSRR) 6.2, 6.3 before 6.3.0.6, 7.0 before 7.0.0.6, 7.5 before 7.5.0.5, and 8.0 before 8.0.0.3 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.
Published: 5/30/2014, 5:55:06 PM
Last modified: 5/6/2026, 10:30:45 PM
References
- http://secunia.com/advisories/58949
- http://www-01.ibm.com/support/docview.wss?uid=swg1IV56254
- http://www-01.ibm.com/support/docview.wss?uid=swg21672829
- https://exchange.xforce.ibmcloud.com/vulnerabilities/92999
- http://secunia.com/advisories/58949
- http://www-01.ibm.com/support/docview.wss?uid=swg1IV56254
- http://www-01.ibm.com/support/docview.wss?uid=swg21672829
- https://exchange.xforce.ibmcloud.com/vulnerabilities/92999