CVE-2011-0486
IBM Cognos 8 Business Intelligence - XSS
Title source: ruleDescription
Cross-site scripting (XSS) vulnerability in cognos.cgi in IBM Cognos 8 Business Intelligence (BI) 8.4.1 before FP1 allows remote attackers to inject arbitrary web script or HTML via the pathinfo parameter.
References (7)
Scores
EPSS
0.0043
EPSS Percentile
62.1%
Classification
CWE
CWE-79
Status
published
Affected Products (2)
ibm/cognos_8_business_intelligence
n/a/n/a
Timeline
Published
Jan 18, 2011
Tracked Since
Feb 18, 2026