Description
IBM Jazz based applications are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 124355.
Remediation
References
Related Vulnerabilities
MySQL CVE-2023-22079 Vulnerability (CVE-2023-22079)
Joomla Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2008-5671)
Oracle JRE CVE-2024-20955 Vulnerability (CVE-2024-20955)
WordPress Plugin SupportFlow Multiple Cross-Site Scripting Vulnerabilities (0.6)
WordPress Plugin PhonePe Payment Solutions Server-Side Request Forgery (1.0.15)