CVE-2014-8914 Information

Feb 14, 2021 cve

Description

Cross-site scripting (XSS) vulnerability in the Process Portal in IBM Business Process Manager 8.0 through 8.0.1.3 8.5.0 through 8.5.0.1 and 8.5.5 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL a different vulnerability than CVE-2014-8913.

Reference

http://secunia.com/advisories/62205 http://www.securitytracker.com/id/1031614 http://www-01.ibm.com/support/docview.wss?uid=swg1JR51836 http://www-01.ibm.com/support/docview.wss?uid=swg1JR52103 http://www-01.ibm.com/support/docview.wss?uid=swg21693239 https://exchange.xforce.ibmcloud.com/vulnerabilities/99285

Share on: