CVE-2013-0473

IBM Security Appscan - XSS

Title source: rule

Description

Multiple cross-site scripting (XSS) vulnerabilities in IBM Security AppScan Enterprise 5.6 and 8.x before 8.7 and IBM Rational Policy Tester 5.6 and 8.x before 8.5.0.4 allow remote attackers to inject arbitrary web script or HTML via a crafted report.

References (3)

[Vendor Advisory] http://www-01.ibm.com/support/docview.wss?uid=swg21626264

[Vendor Advisory] http://www-01.ibm.com/support/docview.wss?uid=swg21631304

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/81337

Scores

EPSS 0.0029

EPSS Percentile 52.1%

Details

CWE

CWE-79

Status published

Products (23)

ibm/security_appscan

... and 13 more

Published Mar 29, 2013

Tracked Since Feb 18, 2026