{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-16T05:56:31.294","vulnerabilities":[{"cve":{"id":"CVE-2013-0506","sourceIdentifier":"psirt@us.ibm.com","published":"2013-03-19T18:55:03.323","lastModified":"2026-04-29T01:13:23.040","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-site scripting (XSS) vulnerability in IBM Sterling Order Management 8.0 before HF127, 8.5 before HF89, 9.0 before HF69, 9.1.0 before FP41, and 9.2.0 before FP13 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors."},{"lang":"es","value":"Vulnerabilidad XSS en IBM Sterling Order Management v8.0 anterior a HF127, 8.5 anterior a HF89, v9.0 anterior HF69, v9.1.0 anterior FP41, y v9.2.0 anterior FP13, permite a usuarios autenticados remotamente inyectar secuencias de comandos web o HTML arbitrarias a través de vectores no especificados."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:sterling_multi-channel_fulfillment_solution:8.0:*:*:*:*:*:*:*","matchCriteriaId":"019E1589-F72C-4024-9EF2-37B9CB54FDE6"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:sterling_selling_and_fulfillment_foundation:8.5:*:*:*:*:*:*:*","matchCriteriaId":"F67E9BBD-95B4-46E5-A980-72BFDFDAF9B6"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:sterling_selling_and_fulfillment_foundation:9.0:*:*:*:*:*:*:*","matchCriteriaId":"BCAA2413-4055-4121-AEDE-E6F97428D351"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:sterling_selling_and_fulfillment_foundation:9.1.0:*:*:*:*:*:*:*","matchCriteriaId":"843E8EC3-1965-48FE-8FB9-A6A08BDD4C67"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:sterling_selling_and_fulfillment_foundation:9.2.0:*:*:*:*:*:*:*","matchCriteriaId":"5F5029B7-9CE0-44B2-A12D-6D51A04B1C4A"}]}]}],"references":[{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg1IC90858","source":"psirt@us.ibm.com"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21631302","source":"psirt@us.ibm.com","tags":["Vendor Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/82341","source":"psirt@us.ibm.com"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg1IC90858","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21631302","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/82341","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}