4 matches found
CVE-2016-0293
Cross-site scripting XSS vulnerability in IBM BigFix Platform formerly Tivoli Endpoint Manager 9.x before 9.1.8 and 9.2.x before 9.2.8 allows remote attackers to inject arbitrary web script or HTML via a modified .beswrpt file...
Cross site scripting
Cross-site scripting XSS vulnerability in IBM BigFix Platform formerly Tivoli Endpoint Manager 9.x before 9.1.8 and 9.2.x before 9.2.8 allows remote attackers to inject arbitrary web script or HTML via a modified .beswrpt file...
CVE-2016-0293
Cross-site scripting XSS vulnerability in IBM BigFix Platform formerly Tivoli Endpoint Manager 9.x before 9.1.8 and 9.2.x before 9.2.8 allows remote attackers to inject arbitrary web script or HTML via a modified .beswrpt file...
IBM BigFix Server 9.2.x < 9.2.8.74 .beswrpt File Handling XSS
According to its self-reported version, the IBM BigFix Server running on the remote host is version 9.2.x prior to 9.2.8.74. It is, therefore affected by a reflected cross-site scripting vulnerability when handling .beswrpt files due to improper validation of input before returning it to users. A...