Description
IBM Security Access Manager for Web is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
Remediation
References
Related Vulnerabilities
Oracle HTTP Server NULL Pointer Dereference Vulnerability (CVE-2021-44224)
Ruby on Rails Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-5419)
MySQL CVE-2018-2805 Vulnerability (CVE-2018-2805)
WordPress Plugin WordPress Filter Gallery Security Bypass (0.0.6)
Apache Tomcat Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-3376)