XSS in Ibm Security_access_manager_for_enterprise_single_sign-on
CVE-2013-6745
Cross-site scripting (XSS) vulnerability in the IMS server before Ifix 6 in IBM Security Access Manager for Enterprise Single Sign-On (ISAM ESSO) 8.2 allows remote authenticated users to inject arbitrary web script or HTML via crafted inpu…
Vulnerability class: XSS (Cross-Site Scripting)
EPSS: 0.002 (45.6th percentile) — read the EPSS interpretation.
Affected products
- Ibm Security_access_manager_for_enterprise_single_sign-on — versions 8.2
- N/a — versions n/a
Weakness classification (CWE)
References
- 64475 (vdb-entry, x_refsource_BID)
- psirt@us.ibm.com (x_refsource_CONFIRM, Vendor Advisory)
- psirt@us.ibm.com (x_refsource_CONFIRM)
- ibm-sam-cve20136745-xss(89861) (vdb-entry, x_refsource_XF)