IBM WebSphere Application Server ‘Liberty Profile’ Cross Site Scripting Vulnerability
The original article can be found at: http://www-01.ibm.com/support/docview.wss?uid=swg21614265
* IBM WebSphere Application Server 18.104.22.168
WebSphere Application Server V8.5 Liberty Profile could allow a cross-site scripting attack, caused by improper validation of the URI. A remote attacker could exploit this vulnerability using a specially-crafted URL to inject script in a victim’s Web browser withing the security context of the hosting Web site.
Published: November 06 2012