Cross-site scripting (XSS) vulnerability in IBM WebSphere Application Server versions 7.0 to 8.5.5.9 allows remote authenticated users to inject arbitrary web script or HTML via crafted data from an OAuth provider.

Cross-site scripting (XSS) vulnerability in IBM WebSphere Application Server versions 7.0 to 8.5.5.9 allows remote authenticated users to inject arbitrary web script or HTML via crafted data from an OAuth provider.

CVE-2015-7417 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in IBM WebSphere Application Server 7.0 before 7.0.0.41, 8.0 before 8.0.0.12, and 8.5 before 8.5.5.9 allows remote authenticated users to inject arbitrary web script or HTML via crafted data from an OAuth provider.

Learn more about our Cis Benchmark Audit For Ibm I.