CVE-2016-6056

Summary

IBM Call Center for Commerce 9.3 and 9.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM Reference #: 2000442.

Affected Software

VendorProductVersion RangeStatus
IBM CorporationCall Center for Commerce9.3affected
IBM CorporationCall Center for Commerce9.4affected

Weaknesses

  • Cross-Site Scripting

ADP Enrichment

CVE Program Container

Additional References

References