Cross-site scripting (XSS) vulnerability in apwc_win_main.jsp in the web console in IBM Tivoli Business Systems Manager (TBSM) before 3.1.0.1 allows remote attackers to inject arbitrary web script or HTML via the skin parameter.
CPE | Name | Operator | Version |
---|---|---|---|
tivoli_business_systems_manager | eq | 3.1 |