2 matches found
Security Bulletin: Tivoli Integrated Portal affected by Cross-site Scripting Vulnerability (CVE-2016-0303)
Summary Stored Cross Site Scripting vulnerability has been found during the test on Tivoli Integrated Portal v2.2. This vulnerability is mostly exploited in order to hijack authenticated users sessions. It can also be used to redirect users to malicious websites or steal application user's...
CVE-2016-0303
IBM Tivoli Integrated Portal (TIP) versions 2.2.0.0–2.2.0.15 are affected by a Cross-Site Scripting (XSS) vulnerability caused by improper validation of user-supplied input. An attacker could inject arbitrary web script/HTML into TIP pages, potentially hijacking authenticated sessions or altering...