Medium severity6.1NVD Advisory· Published Jan 18, 2016· Updated May 6, 2026
CVE-2015-5002
CVE-2015-5002
Description
Cross-site scripting (XSS) vulnerability in IBM Host On-Demand 11.0 through 11.0.14 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.
Affected products
14cpe:2.3:a:ibm:host_on-demand:11.0:*:*:*:*:*:*:*+ 13 more
- cpe:2.3:a:ibm:host_on-demand:11.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:host_on-demand:11.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:host_on-demand:11.0.10:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:host_on-demand:11.0.11:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:host_on-demand:11.0.12:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:host_on-demand:11.0.13:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:host_on-demand:11.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:host_on-demand:11.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:host_on-demand:11.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:host_on-demand:11.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:host_on-demand:11.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:host_on-demand:11.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:host_on-demand:11.0.8:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:host_on-demand:11.0.9:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- www-01.ibm.com/support/docview.wssnvdVendor Advisory
News mentions
0No linked articles in our index yet.