Cross-site scripting (XSS) vulnerability in IBM Connections versions 3.x to 5.0 before CR3

Cross-site scripting (XSS) vulnerability in IBM Connections versions 3.x to 5.0 before CR3

CVE-2015-5036 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in IBM Connections 3.x before 3.0.1.1 CR3, 4.0 before CR4, 4.5 before CR5, and 5.0 before CR3 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, a different vulnerability than CVE-2015-5035.

Learn more about our Cis Benchmark Audit For Ibm I.