| |
Vulnerability CVE-2024-45071
Published: 2024-10-16
| Description: |
IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to stored cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. |
Type:
CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))
References: |
https://www.ibm.com/support/pages/node/7173270
|
|
|
Copyright 2026, cxsecurity.com
|
|
|
