Description
IBM Jazz Foundation is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 120209.
Remediation
References
Related Vulnerabilities
Dotclear Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2016-9268)
WordPress Plugin Contact Bank-Contact Form Builder for WordPress Cross-Site Scripting (2.1.22)
WordPress Plugin Export Users to CSV Unspecified Vulnerability (1.3)
WordPress Plugin SEO Tools 'file' Parameter Directory Traversal (3.1.7)
WordPress Plugin Multiple Roles Cross-Site Request Forgery (1.3.1)