IBM Sterling B2B Integrator 6.0.0.0 through 6.0.3.9, 6.1.0.0 through 6.1.2.3, and 6.2.0.0 is vulnerable to cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 268691.
References
Configurations
No configuration.
History
12 Apr 2024, 12:43
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
12 Apr 2024, 03:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-04-12 03:15
Updated : 2024-04-12 12:43
NVD link : CVE-2023-45186
Mitre link : CVE-2023-45186
CVE.ORG link : CVE-2023-45186
JSON object : View
Products Affected
No product.
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')