Unrated severityNVD Advisory· Published Feb 14, 2014· Updated Jun 17, 2026
CVE-2014-0855
CVE-2014-0855
Description
Multiple cross-site scripting (XSS) vulnerabilities in IBM Connections Portlets 4.x before 4.5.1 FP1 for IBM WebSphere Portal 7.0.0.2 and 8.0.0.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Affected products
4cpe:2.3:a:ibm:connections_portlets:4.0:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:ibm:connections_portlets:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:connections_portlets:4.5:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:connections_portlets:4.5.1:*:*:*:*:*:*:*
- (no CPE)range: <4.5.1 FP1
Patches
Vulnerability mechanics
References
2- www-01.ibm.com/support/docview.wssnvdVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/90802nvd
News mentions
0No linked articles in our index yet.