CVE-2011-2172 Information

Description

Cross-site scripting (XSS) vulnerability in the search center in IBM WebSphere Portal 7.0.0.1 before CF004 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Reference

http://osvdb.org/72500 http://secunia.com/advisories/44700 http://www.ibm.com/support/docview.wss?uid=swg24029452 http://www.securityfocus.com/bid/47954 http://www-01.ibm.com/support/docview.wss?uid=swg1PM36644 http://www-01.ibm.com/support/docview.wss?uid=swg1PM37009 https://exchange.xforce.ibmcloud.com/vulnerabilities/67594