5 matches found
IBM Tivoli Endpoint Manager Multiple Cross Site Scripting Vulnerabilities
IBM Tivoli Endpoint Manager is prone to multiple cross site scripting vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2014-6137
CVE-2014-6137 . IBM Endpoint Manager (formerly Tivoli Endpoint Manager) is affected via the Relay Diagnostics page. The vulnerability is a Cross-Site Scripting (XSS) flaw in the Relay Diagnostics UI that lets an attacker inject arbitrary HTML/JavaScript through parameters on the diagnostics page....
IBM Endpoint Manager - Persistent Cross-Site Scripting
Advisory: Cross-Site Scripting in IBM Endpoint Manager Relay Diagnostics Page During a penetration test, RedTeam Pentesting discovered that the IBM Endpoint Manager Relay Diagnostics page allows anybody to persistently store HTML and JavaScript code that is executed when the page is opened in a...
IBM Endpoint Manager - Persistent Cross-Site Scripting
IBM Endpoint Manager - Persistent Cross-Site Scripting Advisory: Cross-Site Scripting in IBM Endpoint Manager Relay Diagnostics Page During a penetration test, RedTeam Pentesting discovered that the IBM Endpoint Manager Relay Diagnostics page allows anybody to persistently store HTML and JavaScri...
IBM Endpoint Manager 9.1.x / 9.2.x Cross Site Scripting Vulnerability
IBM Endpoint Manager Relay Diagnostics page allows anybody to persistently store HTML and JavaScript code that is executed when the page is opened in a browser. Affected versions include 9.1.x versions earlier than 9.1.1229 and 9.2.x versions earlier than 9.2.1.48. Product: IBM Endpoint Manager...