Multiple cross-site scripting (XSS) vulnerabilities in the Process Portal in IBM Business Process Manager (BPM) 8.0 through 8.0.1.3, 8.5.0 through 8.5.0.1, and 8.5.5 through 8.5.5.0 allow remote authenticated users to inject arbitrary web script or HTML via unspecified data fields.

IBM商业流程管理器(BPM)8.0至8.0.1.3、8.5.0至8.5.0.1以及8.5.5至8.5.5.0中的多个跨站脚本(XSS)漏洞允许远程授权用户通过未指定的数据字段注入任意的Web脚本或HTML。

NVD 暂无评分

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

NVD 暂无漏洞类别信息

神龙GPT 暂无漏洞类别信息（请耐心等待）