Cross-site scripting (XSS) vulnerability in IBM WebSphere Application Server (WAS) 7.0 prior to 7.0.0.29, 8.0 prior to 8.0.0.7, and 8.5 prior to 8.5.5.0, when OAuth is used, allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm websphere application server 8.5.0.2 |
||
ibm websphere application server 8.5.0.0 |
||
ibm websphere application server 8.5.0.1 |
||
ibm websphere application server 8.0.0.0 |
||
ibm websphere application server 8.0.0.1 |
||
ibm websphere application server 8.0.0.6 |
||
ibm websphere application server 8.0.0.2 |
||
ibm websphere application server 8.0.0.3 |
||
ibm websphere application server 8.0.0.4 |
||
ibm websphere application server 8.0.0.5 |
||
ibm websphere application server 7.0 |
||
ibm websphere application server 7.0.0.1 |
||
ibm websphere application server 7.0.0.15 |
||
ibm websphere application server 7.0.0.16 |
||
ibm websphere application server 7.0.0.23 |
||
ibm websphere application server 7.0.0.24 |
||
ibm websphere application server 7.0.0.7 |
||
ibm websphere application server 7.0.0.8 |
||
ibm websphere application server 7.0.0.17 |
||
ibm websphere application server 7.0.0.18 |
||
ibm websphere application server 7.0.0.25 |
||
ibm websphere application server 7.0.0.27 |
||
ibm websphere application server 7.0.0.9 |
||
ibm websphere application server 7.0.0.10 |
||
ibm websphere application server 7.0.0.11 |
||
ibm websphere application server 7.0.0.12 |
||
ibm websphere application server 7.0.0.19 |
||
ibm websphere application server 7.0.0.2 |
||
ibm websphere application server 7.0.0.3 |
||
ibm websphere application server 7.0.0.4 |
||
ibm websphere application server 7.0.0.13 |
||
ibm websphere application server 7.0.0.14 |
||
ibm websphere application server 7.0.0.21 |
||
ibm websphere application server 7.0.0.22 |
||
ibm websphere application server 7.0.0.5 |
||
ibm websphere application server 7.0.0.6 |