CVE-2014-0910
Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 6.1.0.0 through 6.1.0.6 CF27, 6.1.5.0 through 6.1.5.3 CF27, and 7.0.0 through 7.0.0.2 CF28 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Ver en NVDSeveridad
N/A
EPSS
Probabilidad de explotación (próx. 30 días): 0.0144 (1.4%)
Percentil: 80.8%
EPSS: 2026-05-06
Afecta
ibm:websphere_portalDescripción técnica
Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 6.1.0.0 through 6.1.0.6 CF27, 6.1.5.0 through 6.1.5.3 CF27, and 7.0.0 through 7.0.0.2 CF28 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Publicada: 18/6/2014, 16:55:06
Última modificación: 6/5/2026, 22:30:45
Referencias
- http://www-01.ibm.com/support/docview.wss?uid=swg1PI18845
- http://www-01.ibm.com/support/docview.wss?uid=swg21675257
- https://exchange.xforce.ibmcloud.com/vulnerabilities/91875
- http://www-01.ibm.com/support/docview.wss?uid=swg1PI18845
- http://www-01.ibm.com/support/docview.wss?uid=swg21675257
- https://exchange.xforce.ibmcloud.com/vulnerabilities/91875