Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Reflected Cross-Site Scripting exists in the Java System Solutions SSO plugin 4.0.13.1 for BMC MyIT. A remote attacker can abuse this issue to inject client-side scripts into the "select_sso()" function. The payload is triggered when the victim opens a prepared /ux/jss-sso/arslogin?[XSS] link and then clicks the "Login" button.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Java System Solutions SSO plugin for BMC MyIT 跨站脚本漏洞
Vulnerability Description
Java System Solutions SSO plugin for BMC MyIT是英国Java System Solutions公司的一款使用在BMC MyIT中的单点登录插件。 Java System Solutions SSO plugin for BMC MyIT 4.0.13.1版本中存在跨站脚本漏洞。远程攻击者可利用该漏洞向‘select_sso()’函数中注入客户端脚本。
CVSS Information
N/A
Vulnerability Type
N/A