Cross-site scripting (XSS) vulnerability in the Process Portal in IBM Business Process Manager (BPM) 8.0 through 8.0.1.3, 8.5.0 through 8.5.0.1, and 8.5.5 through 8.5.5.0 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.

"IBM商业流程管理器(BPM)8.0 through 8.0.1.3、8.5.0 through 8.5.0.1和8.5.5 through 8.5.5.0 Process Portal中的跨站点脚本(XSS)漏洞允许远程攻击者通过编写的URL注入任意的网页脚本或HTML。

NVD 暂无评分

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

NVD 暂无漏洞类别信息

神龙GPT 暂无漏洞类别信息（请耐心等待）