CVE-2015-1888 Information

Description

Cross-site scripting (XSS) vulnerability in IBM Content Navigator 2.0.2 before 2.0.2-ICN-FP007 and 2.0.3 before 2.0.3-ICN-FP003 as used in Content Manager FileNet Content Manager Content Foundation Content Manager OnDemand and other products allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.

Reference

http://www-01.ibm.com/support/docview.wss?uid=swg21700205