Description
IBM Jazz Foundation Products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 186698
Remediation
References
Related Vulnerabilities
Magento Insufficient Session Expiration Vulnerability (CVE-2021-21031)
WordPress Insecure Default Initialization of Resource Vulnerability (CVE-2017-5491)
MySQL CVE-2015-4819 Vulnerability (CVE-2015-4819)
PHP-Fusion URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-23182)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-2080)