CVE-2016-5888

Summary

IBM Interact 8.6, 9.0, 9.1, and 10.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 115084.

Affected Software

VendorProductVersion RangeStatus
IBM CorporationInteract10.0, 8.6, 9.0, 9.1, 9.1.1, 9.1.2affected

Weaknesses

  • Cross-Site Scripting

ADP Enrichment

CVE Program Container

Additional References

References