漏洞描述
IBM Watson Studio on Cloud Pak for Data是美国国际商业机器(IBM)公司的一个智慧型搜寻与文字分析平台。 IBM Watson Studio on Cloud Pak for Data 4.0版本和5.0版本存在跨站脚本漏洞,该漏洞源于允许嵌入任意JavaScript代码,可能导致凭据泄露。
IBM Watson Studio on Cloud Pak for Data 跨站脚本漏洞
PoC代码
暂无相关漏洞推荐
- POC vscode-settings: Visual Studio Code Settings - Credential Exposure
- POC firebase-fcm-server-key-disclosure: Firebase Cloud Messaging - Server Key Disclosure
- POC alibaba-bucket-listing: Alibaba Cloud OSS Bucket - Public Listing Enabled
- POC ibm-cloud-bucket-exposure: IBM Cloud Object Storage - Bucket Exposure
- POC gcloudignore-file-exposure: Google Cloud Ignore File Exposure
- POC vscode-mcp-json: Visual Studio Code MCP Configuration ("mcp.json") Exposure
- POC gcs-bucket-listing: Google Cloud Storage - Public Bucket Listing
- POC vscode-slnx-sqlite-disclosure: Visual Studio Code - Slnx.SQLite File Disclosure
- SohuTV CacheCloud 跨站脚本漏洞 (CVE-2025-15221)
- CacheCloud 代码注入漏洞
- POC JD Cloud BE6500 命令注入漏洞
- 用友NC及NC Cloud系统 /uapws/service/nc.itf.bap.service.IBapIOService getBapTableDatas SQL 注入漏洞
- 用友U8Cloud /u8cloud/yls SQL 注入漏洞