CVE-2014-3013
IBM Curam Social Program Management - XSS
Title source: ruleDescription
Multiple cross-site scripting (XSS) vulnerabilities in IBM Curam Social Program Management 4.5 SP10 through 6.0.5.4 allow remote authenticated users to inject arbitrary web script or HTML via crafted input to a (1) custom JSP or (2) custom renderer.
Scores
EPSS
0.0019
EPSS Percentile
40.5%
Details
CWE
CWE-79
Status
published
Products (18)
ibm/curam_social_program_management
ibm/curam_social_program_management
ibm/curam_social_program_management
ibm/curam_social_program_management
ibm/curam_social_program_management
ibm/curam_social_program_management
ibm/curam_social_program_management
ibm/curam_social_program_management
ibm/curam_social_program_management
ibm/curam_social_program_management
... and 8 more
Published
Jun 18, 2014
Tracked Since
Feb 18, 2026