Cross-Site Scripting Flaw in IBM Tivoli Common Reporting Products
CVE-2015-1969
Currently unrated
Summary
A cross-site scripting (XSS) vulnerability exists in various versions of IBM Tivoli Common Reporting. This flaw allows remote authenticated users to inject arbitrary web scripts or HTML into affected systems via a specially crafted URL. This can potentially lead to session hijacking, data theft, or other malicious actions, posing a risk to the integrity and security of applications reliant on this reporting tool. Users of these affected products should take immediate action to patch their systems.
References
Timeline
Vulnerability published
Vulnerability Reserved