CVE-2025-2986 – IBM Maximo Asset Management Stored Cross-Site Scripting Vulnerability

April 25, 2025

CVE ID : CVE-2025-2986

Published : April 25, 2025, 12:15 p.m. | 2 hours, 46 minutes ago

Description : IBM Maximo Asset Management 7.6.1.3 is vulnerable to stored cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

Severity: 5.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-3912 – WordPress WS Form LITE Unauthorized Data Access Vulnerability

Next Article CVE-2025-2470 – Nextend Social Login WordPress Plugin Privilege Escalation Vulnerability

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

This $4 Steam Deck game includes the most-played classics from my childhood — and it will save you paper

Microsoft shares rare look at radical Windows 11 Start menu designs it explored before settling on the least interesting one of the bunch

NVIDIA’s new GPU driver adds DOOM: The Dark Ages support and improves DLSS in Microsoft Flight Simulator 2024

How to install and use Ollama to run AI LLMs on your Windows 11 PC

Community News: Latest PECL Releases (05.13.2025)

Community News: Latest PECL Releases (05.13.2025)

How We Use Epic Branches. Without Breaking Our Flow.

I think the ergonomics of generators is growing on me.

This $4 Steam Deck game includes the most-played classics from my childhood — and it will save you paper

This $4 Steam Deck game includes the most-played classics from my childhood — and it will save you paper

Microsoft shares rare look at radical Windows 11 Start menu designs it explored before settling on the least interesting one of the bunch

NVIDIA’s new GPU driver adds DOOM: The Dark Ages support and improves DLSS in Microsoft Flight Simulator 2024

CVE-2025-2986 – IBM Maximo Asset Management Stored Cross-Site Scripting Vulnerability

Nmap 7.96 Launches with Lightning-Fast DNS and 612 Scripts

CVE-2025-24022 – iTop Server Code Execution Vulnerability

DebConf24 closes in Busan and DebConf25 dates announced

Want to Extract Data in JMeter

Rilasciata KaOS 2025.01: Novità e Aggiornamenti

Vstdlib.dll is Missing or Not Found: 5 Ways to Download it

CVE-2025-30326 – Adobe Photoshop Uninitialized Pointer Access Vulnerability

Autho: Your Authy Desktop Alternative and Beyond (Open Source)

Sparrow: An Innovative Open-Source Platform for Efficient Data Extraction and Processing from Various Documents and Images

Meet GenSpark Super Agent: The All-in-One AI Agent that Autonomously Think, Plan, Act, and Use Tools to Handle All Your Everyday Tasks

CVE-2025-2986 – IBM Maximo Asset Management Stored Cross-Site Scripting Vulnerability

Related Posts