← back
CVE-2011-0315

CVE-2011-0315

EPSS 1.9%
Cross-site scripting (XSS) vulnerability in the Servlet Engine / Web Container component in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.35 and 7.0 before 7.0.0.15 allows remote attackers to inject arbitrary web script or HTML via vectors related to the lack of an error page for an application.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/42938https://exchange.xforce.ibmcloud.com/vulnerabilities/64554http://www-01.ibm.com/support/docview.wss?uid=swg1PM18512http://www-01.ibm.com/support/docview.wss?uid=swg27007951http://www-01.ibm.com/support/docview.wss?uid=swg27014463http://www.securityfocus.com/bid/46736http://www.vupen.com/english/advisories/2011/0564