CVE-2025-36148

CVE-2025-36148 affects IBM Financial Transaction Manager for SWIFT Services for Multiplatforms, versions 3.2.4.0–3.2.4.15. The issue is a cross-site scripting vulnerability in the Web UI that allows an unauthenticated attacker to inject arbitrary JavaScript, potentially exposing credentials withi...

PT-2025-2829 · Ibm · Ibm Financial Transaction Manager For Swift Services

Name of the Vulnerable Software and Affected Versions: IBM Financial Transaction Manager for SWIFT Services for Multiplatforms versions 3.2.4.0 through 3.2.4.1 Description: The issue allows authenticated users to embed arbitrary JavaScript code in the Web UI, potentially altering the intended...

GHSA-7R36-JF3C-JHP4 Duplicate Advisory: tgstation-server vulnerable to cached user logins in legacy server

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-42r6-p4px-qvv6. This link is maintained to preserve external references. Original Description In Tgstation tgstation-server 3.2.4.0 through 3.2.1.0 fixed in 3.2.5.0, active logins would be cached, allowing...

Security Bulletin: Financial Transaction Manager for Corporate Payment Services is affected by a potential caching vulnerability (CVE-2020-5003

Summary Potential web serivces XML Enternal Entity Injection XXE attack. Vulnerability Details CVEID: CVE-2020-5003 DESCRIPTION: IBM Financial Transaction Manager is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this...