XSS in Ibm Informix_open_admin_tool

CVE-2013-0492

Cross-site scripting (XSS) vulnerability in IBM Informix Open Admin Tool (OAT) 2.x and 3.x before 3.11.1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.

Vulnerability class: XSS (Cross-Site Scripting)

EPSS: 0.002 (37.5th percentile) — read the EPSS interpretation.

Affected products

Ibm Informix_open_admin_tool — versions 2.0, 3.0
N/a — versions n/a

Weakness classification (CWE)

CWE-79 — Cross-site Scripting

References

psirt@us.ibm.com (x_refsource_CONFIRM, Vendor Advisory)
informix-oat-cve20130492-xss(82007) (vdb-entry, x_refsource_XF)