CVE-2016-0261

Cross-site scripting (XSS) vulnerability in IBM Curam Social Program Management 6.0.0 before SP2 EP29, 6.0.4 before 6.0.4.6 iFix3, 6.0.5 before 6.0.5.9 iFix2, 6.1.0 before 6.1.0.1 iFix1, and 6.1.1 before 6.1.1.1 iFix1; and IBM Care Management 6.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. IBM X-Force ID: 110604.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:ibm:curam_social_program_management:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:curam_social_program_management:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:curam_social_program_management:6.0:sp1:*:*:*:*:*:*
cpe:2.3:a:ibm:curam_social_program_management:6.0:sp2:*:*:*:*:*:*
cpe:2.3:a:ibm:curam_social_program_management:6.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:curam_social_program_management:6.1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:curam_social_program_management:6.1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:curam_social_program_management:6.1.1.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:curam_social_program_management:6.1.1.1:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:a:ibm:care_management:6.0:*:*:*:*:*:*:*

History

No history.

Information

Published : 2018-03-12 21:29

Updated : 2024-02-04 19:46


NVD link : CVE-2016-0261

Mitre link : CVE-2016-0261

CVE.ORG link : CVE-2016-0261


JSON object : View

Products Affected

ibm

  • care_management
  • curam_social_program_management
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')