IBM Tivoli Netcool/OMNIbus is a service level management (SLM) system that provides real-time, centralized monitoring of complex networks and IT domains. web GUI is a web-based version of the application that displays event data from multiple data sources in a variety of graphical formats in supported web browsers and mobile devices. IBM Tivoli Netcool/OMNIbus Web GUI version 8.1.0 is vulnerable. Tivoli Netcool/OMNIbus Web GUI version 8.1.0 is vulnerable to a stored cross-site scripting vulnerability. An attacker could exploit the vulnerability to embed arbitrary JavaScript code in the Web UI, which could alter the intended functionality, which could lead to credential disclosure in a trusted session.