Description

Cross-site scripting (XSS) vulnerability in the Web UI in IBM Rational Team Concert (RTC) 3.0 allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Work Item 165511.

Remediation

References

CVE-2011-2606

Related Vulnerabilities

Oracle JRE CVE-2013-5797 Vulnerability (CVE-2013-5797)

MediaWiki Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2021-41799)

Apache HTTP Server Improper Input Validation Vulnerability (CVE-2016-2161)

WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-39200)

Ruby on Rails Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-2197)

Severity

Medium

Classification

CVE-2011-2606 CWE-707

Tags

Missing Update Known Vulnerabilities