XSS in Ibm Ilog_jviews_gantt
CVE-2012-0715
Cross-site scripting (XSS) vulnerability in the Gantt applet viewer in IBM Tivoli Change and Configuration Management Database (CCMDB) 7.2.1 and IBM ILOG JViews Gantt allows remote attackers to inject arbitrary web script or HTML via unspe…
Vulnerability class: XSS (Cross-Site Scripting)
EPSS: 0.003 (50.4th percentile) — read the EPSS interpretation.
Affected products
- Ibm Ilog_jviews_gantt
- Ibm Tivoli_change_and_configuration_management_database — versions 7.2.1
- N/a — versions n/a
Weakness classification (CWE)
References
- ijg-gav-xss(73587) (vdb-entry, x_refsource_XF)
- IV16174 (vendor-advisory, x_refsource_AIXAPAR)
- psirt@us.ibm.com (x_refsource_CONFIRM, Vendor Advisory)