IBM Tivoli Application Dependency Discovery Manager (TADDM) is a product in the suite of IT service management solutions from International Business Machines (IBM). The product provides robust automated application mapping and discovery to help administrators understand the structure, state, configuration and change history of business applications. A cross-site scripting vulnerability exists in IBM Tivoli Application Dependency Discovery Manager versions 7.3.0.0 through 7.3.0.10, which can be exploited by an attacker to embed arbitrary JavaScript code in the Web UI.