CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-49349 – IBM Financial Transaction Manager cross-site scripting
https://notcve.org/view.php?id=CVE-2024-49349
31 Jan 2025 — IBM Financial Transaction Manager for SWIFT Services for Multiplatforms 3.2.4.0 through 3.2.4.1 is vulnerable to stored cross-site scripting. This vulnerability allows authenticated users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. • https://www.ibm.com/support/pages/node/7182203 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-49339 – IBM Financial Transaction Manager cross-site scripting
https://notcve.org/view.php?id=CVE-2024-49339
31 Jan 2025 — IBM Financial Transaction Manager for SWIFT Services for Multiplatforms 3.2.4.0 through 3.2.4.1 is vulnerable to stored cross-site scripting. This vulnerability allows authenticated users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. • https://www.ibm.com/support/pages/node/7182201 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •