Unrated severityNVD Advisory· Published Jun 3, 2013· Updated Apr 29, 2026

CVE-2013-0464

Description

Multiple cross-site scripting (XSS) vulnerabilities in IBM Eclipse Help System (IEHS) 3.4.3 and 3.6.2, as used in IBM SPSS Data Collection 6.0, 6.0.1, and 7.0, allow remote attackers to inject arbitrary web script or HTML via a crafted URL.

Affected products

IBM/Eclipse Help System2 versions
cpe:2.3:a:ibm:eclipse_help_system:3.4.3:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:ibm:eclipse_help_system:3.4.3:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:eclipse_help_system:3.6.2:*:*:*:*:*:*:*
IBM/Spss Data Collection3 versions
cpe:2.3:a:ibm:spss_data_collection:6.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:ibm:spss_data_collection:6.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:spss_data_collection:6.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:spss_data_collection:7.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www-01.ibm.com/support/docview.wssnvdVendor Advisory
secunia.com/advisories/54971nvd
secunia.com/advisories/55115nvd
www.securityfocus.com/bid/60246nvd
exchange.xforce.ibmcloud.com/vulnerabilities/81060nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000