漏洞描述
IBM CICS TX Advanced是美国国际商业机器(IBM)公司的一个事务处理监控系统,用于在企业环境中运行大规模、高事务量的应用程序。 IBM CICS TX Advanced 10.1和11.1版本存在跨站脚本漏洞,该漏洞源于容易受到存储型跨站脚本攻击,允许用户在Web UI中嵌入任意JavaScript代码,从而改变预期功能导致受信任会话中的凭据泄露。
IBM CICS TX Advanced 跨站脚本漏洞
PoC代码
暂无相关漏洞推荐
- 金和OA LoginModeAdvanced.aspx SQL注入漏洞
- POC CVE-2011-4618: Advanced Text Widget < 2.0.2 - Cross-Site Scripting
- POC CVE-2013-7240: WordPress Plugin Advanced Dewplayer 1.2 - Directory Traversal
- POC CVE-2020-35598: Advanced Comment System 1.0 - Local File Inclusion
- POC CVE-2021-24169: WordPress Advanced Order Export For WooCommerce <3.1.8 - Authenticated Cross-Site Scripting
- POC CVE-2022-1007: WordPress Advanced Booking Calendar <1.7.1 - Cross-Site Scripting
- POC CVE-2023-27032: PrestaShop AdvancedPopupCreator - SQL Injection
- POC CVE-2023-30777: Advanced Custom Fields < 6.1.6 - Cross-Site Scripting
- POC CVE-2024-9796: WordPress WP-Advanced-Search <= 3.3.9 - SQL Injection
- POC advanced-access-manager-lfi: WordPress Advanced Access Manager < 5.9.9 - Local File Inclusion
- POC advanced-booking-calendar-sqli: Advanced Booking Calendar < 1.6.2 - SQL Injection
- WordPress plugin Advanced Reorder Image Text Slider 跨站请求伪造漏洞
- WordPress plugin Qubely – Advanced Gutenberg Blocks 跨站脚本漏洞