CVE-2013-3025 — Cross-site Scripting in IBM Rational Focal Point

CWE-79 — Cross-site Scripting3 documents3 sources
Severity
4.3MEDIUMNVD
EPSS
0.2%
top 53.41%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Rational Focal Point
Timeline
PublishedOct 17
Latest updateMay 17

Description

Multiple cross-site scripting (XSS) vulnerabilities in IBM Rational Focal Point 6.5.x and 6.6.x before 6.6.0.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

â–¶NVDibm/rational_focal_point5 versions+4

🔴Vulnerability Details

2
GHSA
GHSA-5r9h-4wc8-qhf9: Multiple cross-site scripting (XSS) vulnerabilities in IBM Rational Focal Point 6↗2022-05-17
â–¶
CVEList
CVE-2013-3025: Multiple cross-site scripting (XSS) vulnerabilities in IBM Rational Focal Point 6↗2013-10-17
â–¶
CVE-2013-3025 — Cross-site Scripting in IBM | cvebase