2 matches found
CVE-2003-0623
Cross-site scripting XSS vulnerability in the Administration Console for BEA Tuxedo 8.1 and earlier allows remote attackers to inject arbitrary web script via the INIFILE argument...
CVE-2003-0623
CVE-2003-0623 describes a cross-site scripting (XSS) vulnerability in the BEA Tuxedo Administration Console (versions 8.1 and earlier). The flaw allows remote attackers to inject arbitrary web script via the INIFILE parameter. The connected documents confirm the affected component and the exploit...