VYPR
Unrated severityNVD Advisory· Published Jul 17, 2011· Updated Jun 16, 2026

CVE-2011-2754

CVE-2011-2754

Description

Cross-site scripting (XSS) vulnerability in the PageBuilder2 (aka Page Builder) theme in IBM WebSphere Portal 7.x before 7.0.0.1 CF006, as used in IBM Web Content Manager (WCM) and other products, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected products

10
  • cpe:2.3:a:ibm:web_content_manager:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:ibm:web_content_manager:*:*:*:*:*:*:*:*
    • (no CPE)
  • cpe:2.3:a:ibm:websphere_portal:7.0.0.0:*:*:*:*:*:*:*+ 6 more
    • cpe:2.3:a:ibm:websphere_portal:7.0.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_portal:7.0.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf002:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf003:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf004:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf005:*:*:*:*:*:*
    • (no CPE)range: 7.0.0.0 – 7.0.0.1 CF005
  • IBM/PageBuilder2llm-create

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.