Unrated severityNVD Advisory· Published Jul 17, 2011· Updated Jun 16, 2026
CVE-2011-2754
CVE-2011-2754
Description
Cross-site scripting (XSS) vulnerability in the PageBuilder2 (aka Page Builder) theme in IBM WebSphere Portal 7.x before 7.0.0.1 CF006, as used in IBM Web Content Manager (WCM) and other products, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Affected products
10cpe:2.3:a:ibm:web_content_manager:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:ibm:web_content_manager:*:*:*:*:*:*:*:*
- (no CPE)
cpe:2.3:a:ibm:websphere_portal:7.0.0.0:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:ibm:websphere_portal:7.0.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_portal:7.0.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf002:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf003:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf004:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf005:*:*:*:*:*:*
- (no CPE)range: 7.0.0.0 – 7.0.0.1 CF005
Patches
Vulnerability mechanics
References
2- secunia.com/advisories/45106nvdVendor Advisory
- www.ibm.com/support/docview.wssnvd
News mentions
0No linked articles in our index yet.