2 matches found
Security Bulletin: Cross Site Scripting Vulnerability in Tivoli Business Service Manager (CVE-2016-0311)
Summary Information about a cross site scription security vulnerability affecting Tivoli Business Service Manager TBSM is published in this security bulletin. Javascript can be appended to TBSM URLs to run server side. URL parameters are not sanitised. Vulnerability Details CVEID: CVE-2016-0311...
CVE-2016-0311
IBM Tivoli Business Service Manager (TBSM) versions affected: 6.1.0 prior to 6.1.0-TIV-BSM-FP0004 and 6.1.1 prior to 6.1.1-TIV-BSM-FP0004. Description across sources identifies a cross-site scripting (XSS) vulnerability stemming from improper validation of user-supplied input, enabling a remote a...