Multiple cross-site scripting (XSS) vulnerabilities in the Process Portal in IBM Business Process Manager (BPM) 8.0 up to and including 8.0.1.3, 8.5.0 up to and including 8.5.0.1, and 8.5.5 up to and including 8.5.5.0 allow remote authenticated users to inject arbitrary web script or HTML via unspecified data fields.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm business process manager 8.0.1.3 |
||
ibm business process manager 8.5.0.0 |
||
ibm business process manager 8.0.1.0 |
||
ibm business process manager 8.0.1.1 |
||
ibm business process manager 8.5.0.1 |
||
ibm business process manager 8.5.5.0 |
||
ibm business process manager 8.0.0.0 |
||
ibm business process manager 8.0.1.2 |