First published: Sat Jun 28 2014(Updated: )
Cross-site scripting (XSS) vulnerability in IBM Marketing Platform 9.1 before FP2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Credit: psirt@us.ibm.com
Affected Software | Affected Version | How to fix |
---|---|---|
IBM Marketing Platform | =9.1.0.0 | |
IBM Marketing Platform | =9.1.0.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2013-6310 is rated as a medium severity vulnerability due to its potential for cross-site scripting exploitation.
To fix CVE-2013-6310, upgrade the IBM Marketing Platform to version 9.1 FP2 or later.
CVE-2013-6310 allows remote authenticated users to inject arbitrary web scripts or HTML into the application.
CVE-2013-6310 affects users of IBM Marketing Platform versions 9.1.0.0 and 9.1.0.1.
CVE-2013-6310 was disclosed in November 2013.