Description
IBM Security Access Manager 9.0.1 through 9.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 158573.
Remediation
References
Related Vulnerabilities
OpenSSL Other Vulnerability (CVE-2010-4180)
WordPress Plugin PIKLIST-Rapid development framework Cross-Site Scripting (0.9.4.25)
Python Data Processing Errors Vulnerability (CVE-2013-7440)
WordPress Plugin WP Unique Article Header Image Cross-Site Request Forgery (1.0)
WordPress Plugin Responsive Lightbox by dFactory Cross-Site Scripting (1.7.1)