PDA

View Full Version : CVE-2011-4171 (websphere_ilog_rule_team_server)


Java-monitor RSS bot
25-10-2011, 21:52
Cross-site scripting (XSS) vulnerability in content/error.jsp in IBM WebSphere ILOG Rule Team Server 7.1.1 allows remote attackers to inject arbitrary web script or HTML via the project parameter to teamserver/faces/home.jsp.

More... (http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4171)