CVE-2012-5949
N/A
N/A
Summary
Multiple cross-site scripting (XSS) vulnerabilities in IBM TRIRIGA Application Platform 2.x and 3.x before 3.3, and 8, allow remote attackers to inject content, and conduct phishing attacks, via vectors involving (1) the html/en/default/ directory, (2) birt/frameset, (3) WebProcess.srv, (4) sqa/html/en/default/reportTemplate/reportTemplateOrderCols.jsp, or (5) a/html/en/default/om2/omObjectFinder.jsp.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www-01.ibm.com/support/docview.wss?uid=swg21628851
- https://exchange.xforce.ibmcloud.com/vulnerabilities/80629
- http://www-01.ibm.com/support/docview.wss?uid=swg21628852
References
- http://www-01.ibm.com/support/docview.wss?uid=swg21628851
- https://exchange.xforce.ibmcloud.com/vulnerabilities/80629
- http://www-01.ibm.com/support/docview.wss?uid=swg21628852
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.