Medium severity6.1NVD Advisory· Published Jan 18, 2016· Updated Jun 17, 2026
CVE-2015-5002
CVE-2015-5002
Description
Cross-site scripting (XSS) vulnerability in IBM Host On-Demand 11.0 through 11.0.14 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
15cpe:2.3:a:ibm:host_on-demand:11.0:*:*:*:*:*:*:*+ 14 more
- cpe:2.3:a:ibm:host_on-demand:11.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:host_on-demand:11.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:host_on-demand:11.0.10:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:host_on-demand:11.0.11:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:host_on-demand:11.0.12:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:host_on-demand:11.0.13:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:host_on-demand:11.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:host_on-demand:11.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:host_on-demand:11.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:host_on-demand:11.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:host_on-demand:11.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:host_on-demand:11.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:host_on-demand:11.0.8:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:host_on-demand:11.0.9:*:*:*:*:*:*:*
- (no CPE)range: >=11.0 <=11.0.14
Patches
Vulnerability mechanics
References
1- www-01.ibm.com/support/docview.wssnvdVendor Advisory
News mentions
0No linked articles in our index yet.