CVE-2015-1908

EPSS 0.23% · P46 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2015-1908

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0.0 through 7.0.0.2 CF29, 8.0.0 before 8.0.0.1 CF16, and 8.5.0 through CF05, as used in Web Content Manager and other products, allows remote attackers to inject arbitrary web script or HTML via a crafted URL.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

IBM WebSphere Portal和Web Content Manager 跨站脚本漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

IBM WebSphere Portal和Web Content Manager都是美国IBM公司的产品。IBM WebSphere Portal是一套企业门户软件。该软件能够创建一个联接企业内部和外部的平台，可让员工、客户和供应商等通过该平台访问企业内部数据。Web Content Manager是一套网络体验管理软件。该软件允许用户创建、管理和发布内容等。 IBM WebSphere Portal和Web Content Manager中存在跨站脚本漏洞，该漏洞源于程序没有充分验证用户提交的输入。远程

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2015-1908

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2015-1908

请登录查看更多情报信息。

http://www-01.ibm.com/support/docview.wss?uid=swg21701566x_refsource_CONFIRM
http://www.securityfocus.com/bid/74218vdb-entryx_refsource_BID
http://www-01.ibm.com/support/docview.wss?uid=swg1PI37661vendor-advisoryx_refsource_AIXAPAR
http://www.securitytracker.com/id/1032189vdb-entryx_refsource_SECTRACK
https://nvd.nist.gov/vuln/detail/CVE-2015-1908

Same Patch Batch · n/a · 2015-04-24 · 20 CVEs total

CVE-2012-5451		TVMOBiLi 基于栈的缓冲区溢出漏洞
CVE-2015-0911		TAGAWA Takao TransmitMail 路径遍历漏洞
CVE-2015-0910		TAGAWA Takao TransmitMail 跨站脚本漏洞
CVE-2015-3310		Paul's PPP Package 缓冲区错误漏洞
CVE-2015-3148		Haxx cURL和libcurl 安全漏洞
CVE-2015-3145		Haxx cURL和libcurl 拒绝服务漏洞
CVE-2015-3144		Haxx cURL和libcurl 拒绝服务漏洞
CVE-2015-3143		Haxx cURL和libcurl 安全漏洞
CVE-2015-0846		django-markupfield 信息泄露漏洞
CVE-2015-0297		Red Hat RHQ Content Fragment Upload 拒绝服务漏洞
CVE-2015-1886		IBM WebSphere Portal Remote Document Conversion Service 资源管理错误漏洞
CVE-2012-2932		TinyWebGallery 跨站脚本漏洞
CVE-2012-2930		TinyWebGallery 跨站请求伪造漏洞
CVE-2011-4403		Zen Cart 跨站请求伪造漏洞
CVE-2015-3417		FFmpeg 释放后重用漏洞
CVE-2015-3416		SQLite 缓冲区错误漏洞
CVE-2015-3415		SQLite 输入验证错误漏洞
CVE-2015-3414		SQLite 输入验证错误漏洞
CVE-2015-2706		Mozilla Firefox‘AsyncPaintWaitEvent::AsyncPaintWaitEvent()’竞争条件漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2015-1908

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2015-1908

I. Basic Information for CVE-2015-1908

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2015-1908

III. Intelligence Information for CVE-2015-1908

Same Patch Batch · n/a · 2015-04-24 · 20 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2015-1908

Leave a comment