CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

IBM Security Bulletins•added 2018/06/17 3:18 p.m.•23 views

Security Bulletin: IBM Maximo Asset Management is vulnerable to cross-site scripting, caused by improper validation of user-supplied input (CVE-2016-0262)

Summary IBM Maximo Asset Management is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using a specially-crafted URL to execute script in a victim's Web browser within the security context of the hosting...

5.4CVSS0.7AI score0.00622EPSS

Exploits0Affected Software11

NVD•added 2016/03/14 1:59 a.m.•16 views

CVE-2016-0262

Cross-site scripting XSS vulnerability in IBM Maximo Asset Management 7.1.1 through 7.1.1.3, 7.5.0 before 7.5.0.9 IFIX004, and 7.6.0 before 7.6.0.3 IFIX001 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...

5.4CVSS5AI score0.00622EPSS

Exploits0References1

Cvelist•added 2016/03/14 1:0 a.m.•21 views

CVE-2016-0262

5AI score0.00622EPSS

Exploits0References1

CVE•added 2016/03/14 1:0 a.m.•51 views

CVE-2016-0262

CVE-2016-0262 affects IBM Maximo Asset Management: Cross-site scripting (XSS) due to improper validation of user-supplied input. A remote authenticated user can inject arbitrary script/HTML via a crafted URL. Affected versions include Maximo Asset Management core products 7.6, 7.5, 7.1 and relate...

5.4CVSS4.9AI score0.00622EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by