2 matches found
Security Bulletin: Informix Open Admin Tool (OAT) cross-site scripting vulnerability (CVE-2013-0492)
Abstract An attacker can trick a user into inserting a mal-formed URL address into a browser or clicking on a mal-formed URL link and exploit a cross-site scripting vulnerability that can be used to gain unauthorized access or collect sensitive information. Content CVEID: CVE-2013-0492 CVSS Base...
CVE-2013-0492
IBM Informix Open Admin Tool (OAT) suffers an XSS vulnerability (CVE-2013-0492) in OAT 3.11 and earlier. An authenticated user can craft a URL to inject arbitrary script/HTML. Remediation: upgrade to OAT 3.11.1 or later. CVSS base 3.5 (AV:N/AC:M/Au:S/C:N/I:P/A:N).