IBM Security Bulletin: Cross-site scripting vulnerability in IBM WebSphere Application Server Liberty Profile (CVE-2016-3042)
There is a potential cross-site scripting vulnerability in the WebSphere Application Server Liberty OpenID Connect clients.
CVE(s): CVE-2016-3042
Affected product(s) and affected version(s):
This vulnerability affects IBM WebSphere Application Server Liberty.
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2ciN0G3
X-Force Database: http://ift.tt/2coBlSO
from IBM Product Security Incident Response Team http://ift.tt/2ciM1FX