XSS in Ibm Tivoli_identity_manager
CVE-2009-2316
Multiple cross-site scripting (XSS) vulnerabilities in IBM Tivoli Identity Manager (ITIM) 5.0 allow remote attackers to inject arbitrary web script or HTML by entering an unspecified URL in (1) the self-service UI interface or (2) the cons…
Vulnerability class: XSS (Cross-Site Scripting)
EPSS: 0.017 (74.4th percentile) — read the EPSS interpretation.
Affected products
- Ibm Tivoli_identity_manager — versions 5.0
- N/a — versions n/a
Weakness classification (CWE)
References
- cve@mitre.org (vdb-entry, x_refsource_VUPEN)
- cve@mitre.org (vendor-advisory, Vendor Advisory, x_refsource_AIXAPAR)
- cve@mitre.org (vdb-entry, x_refsource_BID)
- cve@mitre.org (vendor-advisory, x_refsource_AIXAPAR)
- cve@mitre.org (x_refsource_CONFIRM, Patch, Vendor Advisory)
- cve@mitre.org (x_refsource_SECUNIA, Vendor Advisory, third-party-advisory)
- cve@mitre.org (vendor-advisory, x_refsource_AIXAPAR)
- cve@mitre.org (x_refsource_CONFIRM)
- cve@mitre.org (x_refsource_SECUNIA, third-party-advisory)
- cve@mitre.org (x_refsource_OSVDB, vdb-entry)