CVE-2014-6091
published 2014-09-23CVE-2014-6091: Cross-site scripting (XSS) vulnerability in IBM Curam Social Program Management (SPM) 6.0.4 before 6.0.4.5 iFix7 allows remote authenticated users to inject…
low3.5CVSS 3.1
AVNACMAuSCNIPAN
Cross-site scripting (XSS) vulnerability in IBM Curam Social Program Management (SPM) 6.0.4 before 6.0.4.5 iFix7 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | curam_social_program_management | — | — |
| ibm | curam_social_program_management | — | — |
| ibm | curam_social_program_management | — | — |
| ibm | curam_social_program_management | — | — |
| ibm | curam_social_program_management | — | — |
| ibm | curam_social_program_management | — | — |