Cross-site scripting (XSS) vulnerability in customreport.jsp in IBM Maximo Asset Management 7.5.x prior to 7.5.0.5 IFIX006 and SmartCloud Control Desk 7.x prior to 7.5.0.3 and 7.5.1.x prior to 7.5.1.2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified parameters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm maximo asset management 7.5.0.1 |
||
ibm maximo asset management 7.5.0.2 |
||
ibm maximo asset management 7.5.0.5 |
||
ibm maximo asset management 7.5.0.3 |
||
ibm maximo asset management 7.5.0.4 |
||
ibm maximo asset management 7.5.0.0 |
||
ibm smartcloud control desk 7.5.0.0 |
||
ibm smartcloud control desk 7.5.0.1 |
||
ibm smartcloud control desk 7.5.1.0 |
||
ibm smartcloud control desk 7.5.1.1 |
||
ibm smartcloud control desk 7.5.0.2 |
||
ibm smartcloud control desk 7.5.0.3 |
||
ibm smartcloud control desk 7.0 |
||
ibm smartcloud control desk 7.5 |
||
ibm smartcloud control desk 7.5.0.5 |