CVE-2009-3745 Information

Description

Cross-site scripting (XSS) vulnerability in the help pages in IBM Rational AppScan Enterprise Edition 5.5.0.2 allows remote attackers to inject arbitrary web script or HTML via the query string.

Reference

http://secunia.com/advisories/37093 http://www.securityfocus.com/bid/36734 http://www.vupen.com/english/advisories/2009/2974 http://www-01.ibm.com/support/docview.wss?uid=swg1PK97516 http://www-01.ibm.com/support/docview.wss?uid=swg24024704 https://exchange.xforce.ibmcloud.com/vulnerabilities/53821