Martijn Lammerts
My own digital place with a little of everything

[CVE-2018-15528] Reflected XSS in Java System Solutions SSO Plugin 4.0.13.1 for BMC MyIT

20 August 2018

Posted by mamurch on Aug 20

Title:
======

Reflected XSS in Java System Solutions SSO Plugin 4.0.13.1 for BMC MyIT

Description:
============

Reflected Cross-Site Scripting in Java System Solutions' BMC MyIT SSO Plugin version 4.0.13.1 was identified during a
penetration test. Other versions might be affected as well. A remote attacker can abuse this issue to inject
client-side scripts into the "select_sso()" function. The payload is triggered when the...
Continue reading...

[CVE-2018-15528] Reflected XSS in Java System Solutions SSO Plugin 4.0.13.1 for BMC MyIT

20 August 2018

Posted by mamurch on Aug 20

Title:
======

Reflected XSS in Java System Solutions SSO Plugin 4.0.13.1 for BMC MyIT

Description:
============

Reflected Cross-Site Scripting in Java System Solutions' BMC MyIT SSO Plugin version 4.0.13.1 was identified during a
penetration test. Other versions might be affected as well. A remote attacker can abuse this issue to inject
client-side scripts into the "select_sso()" function. The payload is triggered when the...
Continue reading...