Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 7.5 prior to 7.5.0.9 IF2 and 7.6 prior to 7.6.0.3 FP3 and Maximo Asset Management 7.5 prior to 7.5.0.9 IF2, 7.5.1, and 7.6 prior to 7.6.0.3 FP3 for SmartCloud Control Desk allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm maximo for nuclear power 7.5 |
||
ibm maximo for government 7.5 |
||
ibm maximo asset management essentials 7.5 |
||
ibm maximo asset management 7.6 |
||
ibm smartcloud control desk 7.6 |
||
ibm smartcloud control desk 7.5 |
||
ibm maximo for utilities 7.5 |
||
ibm maximo for life sciences 7.6 |
||
ibm maximo for transportation 7.5 |
||
ibm maximo asset management 7.5 |
||
ibm maximo for oil and gas 7.5 |
||
ibm maximo for life sciences 7.5 |