1 results (0.001 seconds)
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2023-40684 – IBM Content Navigator cross-site scripting
https://notcve.org/view.php?id=CVE-2023-40684
04 Oct 2023 — IBM Content Navigator 3.0.11, 3.0.13, and 3.0.14 with IBM Daeja ViewOne Virtual is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 264019. IBM Content Navigator 3.0.11, 3.0.13 y 3.0.14 con IBM Daeja ViewOne Virtual es vulnerable a Cross-Site Scripting. Esta vulnerabilidad permite a los usuarios incrustar código J... • https://exchange.xforce.ibmcloud.com/vulnerabilities/264019 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •