What is the severity of CVE-2010-0714?

CVE-2010-0714 has a medium severity rating due to the presence of a cross-site scripting vulnerability.

How do I fix CVE-2010-0714?

To fix CVE-2010-0714, apply the patches provided by IBM for the affected versions of WebSphere Portal and Lotus products.

What products are affected by CVE-2010-0714?

CVE-2010-0714 affects various versions of IBM WebSphere Portal, IBM Lotus Web Content Management, and IBM Lotus Quickr.

What types of attacks can CVE-2010-0714 facilitate?

CVE-2010-0714 can facilitate cross-site scripting attacks, allowing attackers to inject malicious scripts into webpages.

Is there a workaround for CVE-2010-0714?

Temporary mitigation for CVE-2010-0714 includes filtering or encoding user input to prevent script injection until a patch can be applied.

Vulnerability/
CVE-2010-0714

medium

4.3

CWE

26/2/2010

7/8/2024

CVE-2010-0714: XSS

First published: Fri Feb 26 2010(Updated: )

Cross-site scripting (XSS) vulnerability in login.jsp in IBM WebSphere Portal, IBM Lotus Web Content Management (WCM), and IBM Lotus Workplace Web Content Management 5.1.0.0 through 5.1.0.5, 6.0.0.0 through 6.0.0.4, 6.0.1.0 through 6.0.1.7, 6.1.0.0 through 6.1.0.3, and 6.1.5.0; and IBM Lotus Quickr services 8.0, 8.0.0.2, 8.1, 8.1.1, and 8.1.1.1 for WebSphere Portal; allows remote attackers to inject arbitrary web script or HTML via the query string.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
IBM WebSphere Portal	=5.1.0.3
IBM WebSphere Portal	=6.0.0.4
IBM WebSphere Portal	=6.0.1.0
IBM WebSphere Portal	=6.0.1.3
IBM WebSphere Portal	=6.0.0.2
IBM WebSphere Portal	=6.1.5.0
IBM WebSphere Portal	=5.1.0.2
IBM WebSphere Portal	=6.0.1.1
IBM WebSphere Portal	=6.0.0.0
IBM WebSphere Portal	=5.1.0.4
IBM WebSphere Portal	=5.1.0.0
IBM WebSphere Portal	=6.0.1.4
IBM WebSphere Portal	=6.0.1.7
IBM WebSphere Portal	=6.1.0.2
IBM WebSphere Portal	=5.1.0.1
IBM WebSphere Portal	=6.1.0.1
IBM WebSphere Portal	=6.0.1.5
IBM WebSphere Portal	=6.0.1.2
IBM WebSphere Portal	=6.1.0.3
IBM WebSphere Portal	=6.1.0.0
IBM WebSphere Portal	=5.1.0.5
IBM WebSphere Portal	=6.0.1.6
IBM WebSphere Portal	=6.0.0.3
IBM WebSphere Portal	=6.0.0.1
IBM Lotus Web Content Management	=6.1.0.2
IBM Lotus Web Content Management	=6.0.1.4
IBM Lotus Web Content Management	=6.0.1.5
IBM Lotus Web Content Management	=5.1.0.4
IBM Lotus Web Content Management	=6.0.0.1
IBM Lotus Web Content Management	=5.1.0.3
IBM Lotus Web Content Management	=6.0.1.2
IBM Lotus Web Content Management	=5.1.0.1
IBM Lotus Web Content Management	=6.1.0.3
IBM Lotus Web Content Management	=6.0.1.7
IBM Lotus Web Content Management	=6.1.5.0
IBM Lotus Web Content Management	=6.0.1.6
IBM Lotus Web Content Management	=6.1.0.0
IBM Lotus Web Content Management	=5.1.0.5
IBM Lotus Web Content Management	=6.0.0.4
IBM Lotus Web Content Management	=6.0.0.3
IBM Lotus Web Content Management	=6.0.1.3
IBM Lotus Web Content Management	=5.1.0.2
IBM Lotus Web Content Management	=6.0.1.0
IBM Lotus Web Content Management	=6.0.0.2
IBM Lotus Web Content Management	=6.1.0.1
IBM Lotus Web Content Management	=5.1.0.0
IBM Lotus Web Content Management	=6.0.1.1
IBM Lotus Web Content Management	=6.0.0.0
IBM Lotus Workplace Web Content Management	=6.1.5.0
IBM Lotus Workplace Web Content Management	=6.0.1.5
IBM Lotus Workplace Web Content Management	=6.0.0.3
IBM Lotus Workplace Web Content Management	=6.0.1.1
IBM Lotus Workplace Web Content Management	=5.1.0.3
IBM Lotus Workplace Web Content Management	=6.0.1.7
IBM Lotus Workplace Web Content Management	=6.0.1.6
IBM Lotus Workplace Web Content Management	=6.1.0.3
IBM Lotus Workplace Web Content Management	=6.1.0.2
IBM Lotus Workplace Web Content Management	=6.0.1.2
IBM Lotus Workplace Web Content Management	=6.0.1.4
IBM Lotus Workplace Web Content Management	=6.0.0.4
IBM Lotus Workplace Web Content Management	=5.1.0.0
IBM Lotus Workplace Web Content Management	=6.0.0.1
IBM Lotus Workplace Web Content Management	=5.1.0.4
IBM Lotus Workplace Web Content Management	=5.1.0.1
IBM Lotus Workplace Web Content Management	=6.0.0.0
IBM Lotus Workplace Web Content Management	=6.1.0.0
IBM Lotus Workplace Web Content Management	=6.1.0.1
IBM Lotus Workplace Web Content Management	=6.0.0.2
IBM Lotus Workplace Web Content Management	=5.1.0.5
IBM Lotus Workplace Web Content Management	=6.0.1.3
IBM Lotus Workplace Web Content Management	=6.0.1.0
IBM Lotus Workplace Web Content Management	=5.1.0.2
IBM Lotus Quickr	=8.1
IBM Lotus Quickr	=8.1.1.1
IBM Lotus Quickr	=8.0.0.2
IBM Lotus Quickr	=8.0
IBM Lotus Quickr	=8.1.1

Remedy

http://www-01.ibm.com/support/docview.wss?uid=swg21421469

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2010-0714?
CVE-2010-0714 has a medium severity rating due to the presence of a cross-site scripting vulnerability.
How do I fix CVE-2010-0714?
To fix CVE-2010-0714, apply the patches provided by IBM for the affected versions of WebSphere Portal and Lotus products.
What products are affected by CVE-2010-0714?
CVE-2010-0714 affects various versions of IBM WebSphere Portal, IBM Lotus Web Content Management, and IBM Lotus Quickr.
What types of attacks can CVE-2010-0714 facilitate?
CVE-2010-0714 can facilitate cross-site scripting attacks, allowing attackers to inject malicious scripts into webpages.
Is there a workaround for CVE-2010-0714?
Temporary mitigation for CVE-2010-0714 includes filtering or encoding user input to prevent script injection until a patch can be applied.

collector/nvd-historical
collector/nvd-index
agent/softwarecombine
agent/type
collector/mitre-cve
source/MITRE
agent/weakness
agent/last-modified-date
agent/severity
agent/remedy
agent/author
agent/references
agent/first-publish-date
agent/event
agent/description
agent/tags
agent/source
vendor/ibm
canonical/ibm websphere portal
version/ibm websphere portal/5.1.0.3
version/ibm websphere portal/6.0.0.4
version/ibm websphere portal/6.0.1.0
version/ibm websphere portal/6.0.1.3
version/ibm websphere portal/6.0.0.2
version/ibm websphere portal/6.1.5.0
version/ibm websphere portal/5.1.0.2
version/ibm websphere portal/6.0.1.1
version/ibm websphere portal/6.0.0.0
version/ibm websphere portal/5.1.0.4
version/ibm websphere portal/5.1.0.0
version/ibm websphere portal/6.0.1.4
version/ibm websphere portal/6.0.1.7
version/ibm websphere portal/6.1.0.2
version/ibm websphere portal/5.1.0.1
version/ibm websphere portal/6.1.0.1
version/ibm websphere portal/6.0.1.5
version/ibm websphere portal/6.0.1.2
version/ibm websphere portal/6.1.0.3
version/ibm websphere portal/6.1.0.0
version/ibm websphere portal/5.1.0.5
version/ibm websphere portal/6.0.1.6
version/ibm websphere portal/6.0.0.3
version/ibm websphere portal/6.0.0.1
canonical/ibm lotus web content management
version/ibm lotus web content management/6.1.0.2
version/ibm lotus web content management/6.0.1.4
version/ibm lotus web content management/6.0.1.5
version/ibm lotus web content management/5.1.0.4
version/ibm lotus web content management/6.0.0.1
version/ibm lotus web content management/5.1.0.3
version/ibm lotus web content management/6.0.1.2
version/ibm lotus web content management/5.1.0.1
version/ibm lotus web content management/6.1.0.3
version/ibm lotus web content management/6.0.1.7
version/ibm lotus web content management/6.1.5.0
version/ibm lotus web content management/6.0.1.6
version/ibm lotus web content management/6.1.0.0
version/ibm lotus web content management/5.1.0.5
version/ibm lotus web content management/6.0.0.4
version/ibm lotus web content management/6.0.0.3
version/ibm lotus web content management/6.0.1.3
version/ibm lotus web content management/5.1.0.2
version/ibm lotus web content management/6.0.1.0
version/ibm lotus web content management/6.0.0.2
version/ibm lotus web content management/6.1.0.1
version/ibm lotus web content management/5.1.0.0
version/ibm lotus web content management/6.0.1.1
version/ibm lotus web content management/6.0.0.0
canonical/ibm lotus workplace web content management
version/ibm lotus workplace web content management/6.1.5.0
version/ibm lotus workplace web content management/6.0.1.5
version/ibm lotus workplace web content management/6.0.0.3
version/ibm lotus workplace web content management/6.0.1.1
version/ibm lotus workplace web content management/5.1.0.3
version/ibm lotus workplace web content management/6.0.1.7
version/ibm lotus workplace web content management/6.0.1.6
version/ibm lotus workplace web content management/6.1.0.3
version/ibm lotus workplace web content management/6.1.0.2
version/ibm lotus workplace web content management/6.0.1.2
version/ibm lotus workplace web content management/6.0.1.4
version/ibm lotus workplace web content management/6.0.0.4
version/ibm lotus workplace web content management/5.1.0.0
version/ibm lotus workplace web content management/6.0.0.1
version/ibm lotus workplace web content management/5.1.0.4
version/ibm lotus workplace web content management/5.1.0.1
version/ibm lotus workplace web content management/6.0.0.0
version/ibm lotus workplace web content management/6.1.0.0
version/ibm lotus workplace web content management/6.1.0.1
version/ibm lotus workplace web content management/6.0.0.2
version/ibm lotus workplace web content management/5.1.0.5
version/ibm lotus workplace web content management/6.0.1.3
version/ibm lotus workplace web content management/6.0.1.0
version/ibm lotus workplace web content management/5.1.0.2
canonical/ibm lotus quickr
version/ibm lotus quickr/8.1
version/ibm lotus quickr/8.1.1.1
version/ibm lotus quickr/8.0.0.2
version/ibm lotus quickr/8.0
version/ibm lotus quickr/8.1.1

CVE-2010-0714: XSS

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2010-0714?

How do I fix CVE-2010-0714?

What products are affected by CVE-2010-0714?

What types of attacks can CVE-2010-0714 facilitate?

Is there a workaround for CVE-2010-0714?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2010-0714?

How do I fix CVE-2010-0714?

What products are affected by CVE-2010-0714?

What types of attacks can CVE-2010-0714 facilitate?

Is there a workaround for CVE-2010-0714?