Description

IBM Jazz Foundation (IBM Rational Collaborative Lifecycle Management 5.0 and 6.0) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 136006.

Remediation

References

CVE-2017-1762

Related Vulnerabilities

WordPress Plugin Contact Form for WordPress-Ultimate Form Builder Lite Multiple Cross-Site Scripting Vulnerabilities (1.3.2)

WordPress Plugin WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) Unspecified Vulnerability (7.2)

WordPress Plugin BookX Local File Inclusion (1.7)

Family Connections Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2011-5130)

PHP Use After Free Vulnerability (CVE-2020-7068)

Severity

Medium

Classification

CVE-2017-1762 CWE-707 CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Tags

Missing Update Known Vulnerabilities