CVE-2016-5398 in Red Hat JBoss BPM Suiteinfo

Summary

Cross-site scripting (XSS) vulnerability in Business Process Editor in Red Hat JBoss BPM Suite before 6.3.3 allows remote authenticated users to inject arbitrary web script or HTML by levering permission to create business processes.

Reservation

06/10/2016

Disclosure

10/03/2016

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
92316	Red Hat JBoss BPM Suite Business Process Editor cross site scripting	79	Not defined	Official fix	CVE-2016-5398

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

◂ PreviousOverviewNext ▸

Interested in the pricing of exploits?

See the underground prices here!