CVE-2013-6725 in WebSphere Application Serverinfo

Summary

Cross-site scripting (XSS) vulnerability in the Administrative Console in IBM WebSphere Application Server 7.x before 7.0.0.31, 8.0.x before 8.0.0.8, and 8.5.x before 8.5.5.2 allows remote authenticated administrators to inject arbitrary web script or HTML via a crafted URL.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

11/08/2013

Disclosure

01/16/2014

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
11966	IBM WebSphere Application Server Administrative Console Reflected cross site scripting	79	High	Official fix	CVE-2013-6725

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PreviousOverviewNext ▸

Might our Artificial Intelligence support you?

Check our Alexa App!