VYPR
Unrated severityNVD Advisory· Published Feb 14, 2014· Updated Jun 17, 2026

CVE-2014-0855

CVE-2014-0855

Description

Multiple cross-site scripting (XSS) vulnerabilities in IBM Connections Portlets 4.x before 4.5.1 FP1 for IBM WebSphere Portal 7.0.0.2 and 8.0.0.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected products

4
  • cpe:2.3:a:ibm:connections_portlets:4.0:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:ibm:connections_portlets:4.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:connections_portlets:4.5:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:connections_portlets:4.5.1:*:*:*:*:*:*:*
    • (no CPE)range: <4.5.1 FP1

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.