Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in the IMS server before Ifix 6 in IBM Security Access Manager for Enterprise Single Sign-On (ISAM ESSO) 8.2 allows remote authenticated users to inject arbitrary web script or HTML via crafted input to an unspecified dynamic web form.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Security Access Manager for Enterprise Single Sign-On 跨站脚本漏洞
Vulnerability Description
IBM Security Access Manager for Enterprise Single Sign-On(ISAM ESSO)是美国IBM公司的一套可提供单点登录的身份和访问管理软件。该软件可简化密码管理、使用强大的身份验证来保护信息,并帮助保护自助交易终端(kiosks)和共享的工作站。 ISAM ESSO 8.2版本中的IMS服务器Ifix 6之前的版本中存在跨站脚本漏洞,该漏洞源于动态的Web表单没有正确过滤用户提交的输入。远程攻击者可利用该漏洞注入任意Web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A