Vulnerable Systems:
*WebSphere Portal 7.0.0 and prior
IBM WebSphere Portal contains a flaw that allows a reflected cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input related to tagging before returning it to the user. This may allow an attacker to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server..