CVE-2012-0716 - Statute Dickweed
Description
Cross-site scripting (XSS) vulnerability in the Administration Console in IBM WebSphere Application Server 7.0 before 7.0.0.23 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Reference
http://www.ibm.com/support/docview.wss?uid=swg1PM53132 http://www.ibm.com/support/docview.wss?uid=swg21595172 http://www.securityfocus.com/bid/52722