MEDIUMπŸ‡΅πŸ‡± Wersja polska

CVE-2025-33110

CVSS 5.4v3.1pub. 2025-11-06upd. 2025-11-24

IBM OpenPages 9.1, and 9.0 with Watson is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
  • IBM Openpages

    APP
    Ibm
    9.0.09.1.0
πŸ”΅
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2025-27368MEDIUM4.3ten sam produkt

IBM OpenPages 9.0 and 9.1 is vulnerable to information disclosure of sensitive information due to a weaker tha...

CVE-2025-36223MEDIUM5.4ten sam produkt

IBM OpenPages 9.0 and 9.1 is vulnerable to HTTP header injection, caused by improper validation of input by th...

CVE-2025-36121MEDIUM5.4ten sam produkt

IBM OpenPages 9.1 and 9.0 is vulnerable to HTML injection. A remotely authenticated attacker could inject mali...

CVE-2025-36082MEDIUM4.0ten sam produkt

IBM OpenPages 9.0 and 9.1 allows web page cache to be stored locally which can be read by another user on the ...

CVE-2025-2670MEDIUM4.3ten sam produkt

IBM OpenPages 9.0 is vulnerable to information disclosure of sensitive information due to a weaker than expect...

CVE-2025-33110 β€” Ibm β€” Openpages β€” MEDIUM β€” CVSS 5.4 | CVEbaza.pl