VYPR
Unrated severityNVD Advisory· Published Feb 21, 2013· Updated Jun 16, 2026

CVE-2013-0477

CVE-2013-0477

Description

Multiple cross-site scripting (XSS) vulnerabilities in IBM InfoSphere Master Data Management - Collaborative Edition 10.0 and 10.1 before FP1 and InfoSphere Master Data Management Server for Product Information Management 6.0, 9.0, and 9.1 allow remote authenticated users to inject content, and conduct phishing attacks, via unspecified vectors.

Affected products

7
  • cpe:2.3:a:ibm:infosphere_master_data_management_collaboration_server:10.0.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:ibm:infosphere_master_data_management_collaboration_server:10.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:infosphere_master_data_management_collaboration_server:10.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:infosphere_master_data_management_server_for_product_information_management:6.0.0:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:ibm:infosphere_master_data_management_server_for_product_information_management:6.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:infosphere_master_data_management_server_for_product_information_management:9.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:infosphere_master_data_management_server_for_product_information_management:9.1.0:*:*:*:*:*:*:*
    • (no CPE)range: 6.0, 9.0, 9.1

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.