CVE-2014-0843

CVE-2014-0843

EPSS 1.1%

Cross-site scripting (XSS) vulnerability in IBM Rational Focal Point 6.4.x and 6.5.x before 6.5.2.3 and 6.6.x before 6.6.1 allows remote authenticated users to inject arbitrary web script or HTML by uploading a file.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://exchange.xforce.ibmcloud.com/vulnerabilities/90714 http://www-01.ibm.com/support/docview.wss?uid=swg21665005 http://www.securityfocus.com/bid/65730