Description

Cross-site scripting (XSS) vulnerability in the Web UI in IBM Rational Team Concert (RTC) 3.0 allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Work Item 165511.

Remediation

References

CVE-2011-2606

Related Vulnerabilities

Sqlite Missing Release of Memory after Effective Lifetime Vulnerability (CVE-2021-45346)

WordPress Plugin Lazy Load Cross-Site Scripting (0.6)

Liferay Portal Session Fixation Vulnerability (CVE-2023-47798)

Caddy Web Server Uncontrolled Resource Consumption Vulnerability (CVE-2023-44487)

Apache Tomcat Other Vulnerability (CVE-2007-3384)

Severity

Medium

Classification

CVE-2011-2606 CWE-707

Tags

Missing Update Known Vulnerabilities