CVE-2010-0778
IBM WAS <7.0.0.11 - XSS
Title source: llmDescription
Cross-site scripting (XSS) vulnerability in the Administration Console in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.33 and 7.0 before 7.0.0.11 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Scores
EPSS
0.0020
EPSS Percentile
42.1%
Classification
CWE
CWE-79
Status
published
Affected Products (27)
ibm/websphere_application_server
ibm/websphere_application_server
ibm/websphere_application_server
ibm/websphere_application_server
ibm/websphere_application_server
ibm/websphere_application_server
ibm/websphere_application_server
ibm/websphere_application_server
ibm/websphere_application_server
ibm/websphere_application_server
ibm/websphere_application_server
ibm/websphere_application_server
ibm/websphere_application_server
ibm/websphere_application_server
ibm/websphere_application_server
... and 12 more
Timeline
Published
Jun 24, 2010
Tracked Since
Feb 18, 2026