CVE-2007-6407
CVE-2007-6407 covers multiple XSS flaws in IBM Tivoli Provisioning Manager Express. Remote attackers can inject arbitrary script/HTML via the /tpmx URI by manipulating fields such as the (1) “assess modification” and (2) user-id, plus other unspecified vectors related to “error processing.” The N...