Description
IBM Jazz Team Server based Applications are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 182397.
Remediation
References
Related Vulnerabilities
WordPress Plugin YITH WooCommerce Gift Cards Security Bypass (1.3.7)
WordPress 4.3.x Cross-Domain Flash Injection Vulnerability (4.3 - 4.3.14)
WordPress Plugin YOP Poll Cross-Site Scripting (6.1.4)
WordPress Plugin Resume Submissions & Job Postings Arbitrary File Upload (2.5.1)
WordPress Plugin CM Download Manager Arbitrary File Upload (2.8.5)