Arbitrary Web Script Injection Vulnerability in BEA Tuxedo Administration Console

Arbitrary Web Script Injection Vulnerability in BEA Tuxedo Administration Console

CVE-2003-0623 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in the Administration Console for BEA Tuxedo 8.1 and earlier allows remote attackers to inject arbitrary web script via the INIFILE argument.

Learn more about our Web App Pen Testing.