Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in IBM Tivoli Service Automation Manager 7.2.2.2 before 7.2.2.2-TIV-TSAM-LA0041 allow remote attackers to inject arbitrary web script or HTML via vectors involving the (1) REST API or (2) Self Service UI.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Tivoli Service Automation Manager 跨站脚本漏洞
Vulnerability Description
IBM Tivoli Service Automation Manager是美国IBM公司的一套用于帮助用户自动化请求、部署、监视和管理云计算服务的解决方案。该方案提供可追踪的流程和批准路由等功能。 IBM Tivoli Service Automation Manager 7.2.2.2版本中存在跨站脚本漏洞,该漏洞源于程序没有充分过滤用户提交的输入。远程攻击者可借助REST API或Self Service UI利用该漏洞注入任意Web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A