Recently, a member of the Securityium team discovered a vulnerability in Intellect Design Arena's Intellect Core banking software. Intellect Design Arena is a company that provides large enterprise-grade composable and contextual solutions driving higher business growth, reducing costs and risk on a sustainable basis.
The vulnerability, identified as CVE-2015-6540, is a cross-site scripting (XSS) vulnerability. According to the National Vulnerability Database (NVD), it has a CVSS 3.0 score of 6.1, which is considered a medium severity. The NVD also provides a detailed description of the vulnerability, its impact, and potential solutions. The link to the NVD page for this vulnerability is https://nvd.nist.gov/vuln/detail/CVE-2015-6540.
It's important to note that this vulnerability has been modified since it was last analyzed by the NVD and is awaiting re-analysis which may result in further changes to the information provided. Additionally, the NVD provides references to advisories, solutions, and tools that may be useful for addressing the vulnerability.
Intellect Design Arena values the contributions of the security research community and encourages researchers to report any potential vulnerabilities they may discover. The company is committed to ensuring the security of its products and works closely with researchers to identify and address any potential vulnerabilities.
Overall, the discovery made by the Securityium team member is a testament to the importance of ongoing efforts to improve security and the valuable role that security researchers play in identifying and addressing vulnerabilities. Intellect Design Arena continues to encourage the participation of security researchers to help maintain and further bolster the protections for their customers.