CVE-2015-1910: XSS
First published: Mon May 25 2015(Updated: )
Cross-site scripting (XSS) vulnerability in the Reference Data Management component in the server in IBM InfoSphere Master Data Management (MDM) 10.1 before IF1, 11.0 before FP3, and 11.3 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM InfoSphere Master Data Management Server | =10.1 | |
| IBM InfoSphere Master Data Management Server | =11.0 | |
| IBM InfoSphere Master Data Management Server | =11.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- vendor/ibm
- canonical/ibm infosphere master data management server
- version/ibm infosphere master data management server/10.1
- version/ibm infosphere master data management server/11.0
- version/ibm infosphere master data management server/11.3