Multiple cross-site scripting (XSS) vulnerabilities in IBM Tivoli Service Automation Manager 7.2.2.2 prior to 7.2.2.2-TIV-TSAM-LA0041 allow remote malicious users to inject arbitrary web script or HTML via vectors involving the (1) REST API or (2) Self Service UI.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm tivoli service automation manager 7.2.2.2 |