CVE-2014-3010
Cross-site scripting (XSS) vulnerability in the Web UI in IBM WebSphere Service Registry and Repository (WSRR) 6.2, 6.3 before 6.3.0.6, 7.0 before 7.0.0.6, 7.5 before 7.5.0.5, and 8.0 before 8.0.0.3 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.
Ver en NVDSeveridad
N/A
EPSS
Probabilidad de explotación (próx. 30 días): 0.0026 (0.3%)
Percentil: 48.9%
EPSS: 2026-05-06
Afecta
ibm:websphere_service_registry_and_repositoryDescripción técnica
Cross-site scripting (XSS) vulnerability in the Web UI in IBM WebSphere Service Registry and Repository (WSRR) 6.2, 6.3 before 6.3.0.6, 7.0 before 7.0.0.6, 7.5 before 7.5.0.5, and 8.0 before 8.0.0.3 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.
Publicada: 30/5/2014, 17:55:06
Última modificación: 6/5/2026, 22:30:45
Referencias
- http://secunia.com/advisories/58949
- http://www-01.ibm.com/support/docview.wss?uid=swg1IV56254
- http://www-01.ibm.com/support/docview.wss?uid=swg21672829
- https://exchange.xforce.ibmcloud.com/vulnerabilities/92999
- http://secunia.com/advisories/58949
- http://www-01.ibm.com/support/docview.wss?uid=swg1IV56254
- http://www-01.ibm.com/support/docview.wss?uid=swg21672829
- https://exchange.xforce.ibmcloud.com/vulnerabilities/92999