Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2018-15528
HistoryAug 21, 2018 - 4:00 p.m.

CVE-2018-15528

2018-08-2116:00:00
mitre
www.cve.org
5

EPSS

0.002

Percentile

54.7%

JSON

Reflected Cross-Site Scripting exists in the Java System Solutions SSO plugin 4.0.13.1 for BMC MyIT. A remote attacker can abuse this issue to inject client-side scripts into the β€œselect_sso()” function. The payload is triggered when the victim opens a prepared /ux/jss-sso/arslogin?[XSS] link and then clicks the β€œLogin” button.

Related

packetstorm 1
nvd 1
prion 1
cve 1
zdt 1
packetstorm
packetstorm
Java System Solutions SSO Plugin For BMC MyIT 4.0.13.1 Cross Site Scripting
2018-08-20 00:00:00
nvd
nvd
CVE-2018-15528
2018-08-21 16:29:00
prion
prion
Cross site scripting
2018-08-21 16:29:00
cve
cve
CVE-2018-15528
2018-08-21 16:29:00
zdt
zdt
BMC MyIT Java System Solutions SSO Plugin 4.0.13.1 Cross Site Scripting Vulnerability
2018-08-20 00:00:00

EPSS

0.002

Percentile

54.7%

JSON
Related for CVELIST:CVE-2018-15528
packetstorm1nvd1prion1cve1zdt1