cbcvebase.
CVE-2015-7460
published 2018-03-20

CVE-2015-7460: Cross-site scripting (XSS) vulnerability in IBM Connections 3.0.1.1 and earlier, 4.0, 4.5, and 5.0 before CR4 allows remote attackers to inject arbitrary web…

medium5.4CVSS 3.0
AVNACLPRLUIRSCCLILAN
Cross-site scripting (XSS) vulnerability in IBM Connections 3.0.1.1 and earlier, 4.0, 4.5, and 5.0 before CR4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. IBM X-Force ID: 108356.

Affected

4 ranges
VendorProductVersion rangeFixed in
ibmconnections<= 3.0.1.1
ibmconnections
ibmconnections
ibmconnections