CVE-2013-0502

IBM InfoSphere Information Server <9.1 - XSS

Title source: llm

Description

Cross-site scripting (XSS) vulnerability in IBM InfoSphere Information Server 8.1, 8.5 through FP3, 8.7 through FP2, and 9.1 allows remote attackers to inject arbitrary web script or HTML via a malformed URL.

References (3)

[Various Sources] http://www-01.ibm.com/support/docview.wss?uid=swg1JR45274

[Vendor Advisory] http://www-01.ibm.com/support/docview.wss?uid=swg21632556

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/82233

Scores

EPSS 0.0027

EPSS Percentile 49.9%

Details

CWE

CWE-79

Status published

Products (10)

ibm/infosphere_information_server

n/a/n/a

Published Apr 01, 2013

Tracked Since Feb 18, 2026