Description

IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 152157.

Remediation

References

CVE-2018-1893

Related Vulnerabilities

MyBB Other Vulnerability (CVE-2007-2212)

WordPress Plugin Download Manager Arbitrary File Deletion (3.2.50)

WordPress Plugin Simple:Press 'sf-header-forum.php' SQL Injection (4.3.0)

MySQL CVE-2024-21130 Vulnerability (CVE-2024-21130)

WordPress Plugin OnePress Social Locker Multiple Cross-Site Scripting Vulnerabilities (4.2.0)

Severity

Medium

Classification

CVE-2018-1893 CWE-707 CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Tags

Missing Update Known Vulnerabilities