Description
Cross-site scripting (XSS) vulnerability in IBM Rational Team Concert 2.x and 3.x before 3.0.1.6 iFix 5, 4.x before 4.0.7 iFix3, and 5.x before 5.0.2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, a different vulnerability than CVE-2015-0123.
Remediation
References
Related Vulnerabilities
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-31546)
WordPress Plugin LOGOSWARE SUITE Uploader Arbitrary File Upload (1.1.6)
Joomla! Core 3.x.x Cross-Site Request Forgery (3.0.0 - 3.9.26)
WebLogic CVE-2020-2552 Vulnerability (CVE-2020-2552)
WordPress Plugin Migration, Backup, Staging-WPvivid Directory Traversal (0.9.75)