VYPR
Unrated severityNVD Advisory· Published Feb 26, 2014· Updated Jun 17, 2026

CVE-2014-0853

CVE-2014-0853

Description

Multiple cross-site scripting (XSS) vulnerabilities in the (1) ForwardController and (2) AttributeEditor scripts in IBM Rational Focal Point 6.4.x and 6.5.x before 6.5.2.3 and 6.6.x before 6.6.1 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

Affected products

18
  • cpe:2.3:a:ibm:rational_focal_point:6.4:*:*:*:*:*:*:*+ 17 more
    • cpe:2.3:a:ibm:rational_focal_point:6.4:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:rational_focal_point:6.4.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:rational_focal_point:6.4.1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:rational_focal_point:6.4.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:rational_focal_point:6.4.1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:rational_focal_point:6.4.1.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:rational_focal_point:6.5:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:rational_focal_point:6.5.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:rational_focal_point:6.5.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:rational_focal_point:6.5.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:rational_focal_point:6.5.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:rational_focal_point:6.5.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:rational_focal_point:6.5.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:rational_focal_point:6.5.2.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:rational_focal_point:6.5.2.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:rational_focal_point:6.6:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:rational_focal_point:6.6.0.1:*:*:*:*:*:*:*
    • (no CPE)range: 6.4.x, 6.5.x < 6.5.2.3, 6.6.x < 6.6.1

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.