Security Bulletin: IBM Tivoli Composite Application Manager for Application Diagnostics Installed WebSphere Application Server traditional is vulnerable to cross-site scripting in the Admin Console (CVE-2022-34336)

Summary The security issue described in CVE-2022-34336 has been identified in the WebSphere Application Server traditional included as part of IBM Tivoli Composite Application Manager for Application Diagnostics Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes...

Security Bulletin: Potential cross-site scripting vulnerability in the WebSphere Application Server Admin Console (CVE-2018-1777)

Summary There is a potential cross-site scripting vulnerability in the WebSphere Application Server Admin Console. Vulnerability Details CVEID: CVE-2018-1777 DESCRIPTION: IBM WebSphere Application Server Admin Console is vulnerable to cross-site scripting. This vulnerability allows users to embed...

CVE-2018-1926

IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 Admin Console is vulnerable to cross-site request forgery, caused by improper validation of user-supplied input. By persuading a user to visit a malicious URL, a remote attacker could send a specially-crafted request. An attacker could explo...

Security Bulletin: Potential cross-site scripting vulnerability in the WebSphere Application Server Admin Console shipped with Tivoli Integrated Portal (CVE-2018-1777)

Summary There is a potential cross-site scripting vulnerability in the WebSphere Application Server Admin Console. Vulnerability Details CVEID: CVE-2018-1777 DESCRIPTION: IBM WebSphere Application Server Admin Console is vulnerable to cross-site scripting. This vulnerability allows users to embed...