漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
IBM Spectrum Copy Data Management 2.2.0.0 through 2.2.15.0 is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using some fields of the form in the portal UI to inject malicious script into a Web page which would be executed in a victim's Web browser within the security context of the hosting Web site, once the page is viewed. An attacker could use this vulnerability to steal the victim's cookie-based authentication credentials. IBM X-Force ID: 227364.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Spectrum Copy Data Management 跨站脚本漏洞
Vulnerability Description
IBM Spectrum Copy Data Management是美国国际商业机器公司(IBM)的实现数据中心副本管理流程的现代化、简化和自动化。 IBM Spectrum Copy Data Management 2.2.0.0版本到2.2.15.0版本存在跨站脚本漏洞,该漏洞源于用户提供的输入的验证不当。攻击者可以利用此漏洞窃取受害者基于 cookie 的身份验证凭据。
CVSS Information
N/A
Vulnerability Type
N/A