IBM WebSphere Application Server Liberty is vulnerable to cross-site scripting with the servlet-6.0 feature enabled.
CVEID: CVE-2024-27270[1]
DESCRIPTION: IBM WebSphere Application
Server Liberty is vulnerable to cross-site scripting.This
vulnerability allows users to embed arbitrary JavaScript code in a
specially crafted URI.
CVSS Base score:4.7
CVSS Temporal Score:See:https://exchange.xforce.ibmcloud.com/vulnerabilities/284576[2]...