CVSS: 4.3EPSS: 0%CPEs: 5EXPL: 0CVE-2013-0464
https://notcve.org/view.php?id=CVE-2013-0464
Multiple cross-site scripting (XSS) vulnerabilities in IBM Eclipse Help System (IEHS) 3.4.3 and 3.6.2, as used in IBM SPSS Data Collection 6.0, 6.0.1, and 7.0, allow remote attackers to inject arbitrary web script or HTML via a crafted URL. Múltiples vulnerabilidades de cross-site scripting (XSS) en IBM Eclipse Help System (IEHS) v3.4.3 y v3.6.2, como es usado en IBM SPSS Data Collection v6.0, v6.0.1, y v7.0, permite a atacantes remotos inyectar secuencias de comandos web o HTML a través de una URL modificada. • http://secunia.com/advisories/54971 http://secunia.com/advisories/55115 http://www-01.ibm.com/support/docview.wss?uid=swg21637954 http://www.securityfocus.com/bid/60246 https://exchange.xforce.ibmcloud.com/vulnerabilities/81060 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •