CVE-2012-0716 - Statute Dickweed

Description

Cross-site scripting (XSS) vulnerability in the Administration Console in IBM WebSphere Application Server 7.0 before 7.0.0.23 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Reference

http://www.ibm.com/support/docview.wss?uid=swg1PM53132 http://www.ibm.com/support/docview.wss?uid=swg21595172 http://www.securityfocus.com/bid/52722