5 matches found
The vulnerability of the Business Process Manager system allows a perpetrator to inject arbitrary Web or HTML code.
The vulnerability of the Document List control implementation in the Business Process Manager system exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to inject arbitrary Web or HTML code using a specially crafted URL...
IBM Business Process Manager Cross-Site Scripting Vulnerability (CNVD-2016-01477)
IBM Business Process Manager BPM is a comprehensive set of business process management platform from IBM in the United States. The platform provides a range of tools related to process modeling, assembly, monitoring and deployment for business. A cross-site scripting vulnerability exists in the...
CVE-2016-0227
Cross-site scripting XSS vulnerability in the document-list control implementation in IBM Business Process Manager BPM 8.0 through 8.0.1.3, 8.5.0 through 8.5.0.2, and 8.5.5 and 8.5.6 through 8.5.6.2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...
Cross site scripting
Cross-site scripting XSS vulnerability in the document-list control implementation in IBM Business Process Manager BPM 8.0 through 8.0.1.3, 8.5.0 through 8.5.0.2, and 8.5.5 and 8.5.6 through 8.5.6.2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...
CVE-2016-0227
Cross-site scripting XSS vulnerability in the document-list control implementation in IBM Business Process Manager BPM 8.0 through 8.0.1.3, 8.5.0 through 8.5.0.2, and 8.5.5 and 8.5.6 through 8.5.6.2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...