Search Results (Refine Search)
- CPE Product Version: cpe:/a:ibm:websphere_portal:6.1.0.6
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2013-6328 |
Cross-site scripting (XSS) vulnerability in the Web Content Manager (WCM) UI in IBM WebSphere Portal 6.1.0.x through 6.1.0.6 CF27, 6.1.5.x through 6.1.5.3 CF27, 7.0.0.x through 7.0.0.2 CF26, and 8.0.0.x before 8.0.0.1 CF09 allows remote attackers to inject arbitrary web script or HTML via vectors involving IFRAME elements. Published: December 22, 2013; 10:16:04 AM -0500 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
CVE-2013-0587 |
Multiple cross-site scripting (XSS) vulnerabilities in IBM WebSphere Portal before 8.0.0.1 CF07 allow remote attackers to inject arbitrary web script or HTML via vectors involving the (1) Portal, (2) Portal 7.0.0.2, (3) Portal 8.0, or (4) PortalWeb2 theme. Published: August 15, 2013; 9:55:15 PM -0400 |
V3.x:(not available) V2.0: 4.3 MEDIUM |