IBM WebSphere Application Server is vulnerable to cross-site scripting in the Admin Console (CVE-2023-24966)

Authors: Created by IBM

IBM WebSphere Application Server is vulnerable to cross site scripting in the Admin Console.This has been addressed in the remediation section below. CVEID: CVE-2023-24966 ^[1]
DESCRIPTION: IBM WebSphere Application Server is vulnerable to cross-site scripting.This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
CVSS Base score:...

Just published by IBM: Read more