CVE-2013-6732
IBM Cognos Business Intelligence - XSS
Title source: ruleDescription
Cross-site scripting (XSS) vulnerability in the server in IBM Cognos Business Intelligence (BI) 8.4.1, 10.1 before IF6, 10.1.1 before IF5, 10.2 before IF7, 10.2.1 before IF4, and 10.2.1.1 before IF4 allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter.
Scores
EPSS
0.0024
EPSS Percentile
46.3%
Details
CWE
CWE-79
Status
published
Products (7)
ibm/cognos_business_intelligence
ibm/cognos_business_intelligence
ibm/cognos_business_intelligence
ibm/cognos_business_intelligence
ibm/cognos_business_intelligence
ibm/cognos_business_intelligence
n/a/n/a
Published
Feb 22, 2014
Tracked Since
Feb 18, 2026