Cross-site scripting (XSS) vulnerability in IBM WebSphere Application Server (WAS) 6.x through 6.1.0.47, 7.0 before 7.0.0.35, 8.0 before 8.0.0.10, and 8.5 before 8.5.5.4 allows remote authenticated. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.
IBM
XSS
Websphere Application Server
NVD
CVSS 2.0
3.5
EPSS
0.4%
Cross-site scripting (XSS) vulnerability in IBM Curam Social Program Management (SPM) 6.0.4 before 6.0.4.5 iFix7 allows remote authenticated users to inject arbitrary web script or HTML via a crafted. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.
IBM
XSS
Curam Social Program Management
NVD
CVSS 2.0
3.5
EPSS
0.2%