Description
IBM Team Concert (RTC including IBM Rational Collaborative Lifecycle Management 4.0, 5.0., and 6.0) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-force ID: 126858.
Remediation
References
Related Vulnerabilities
WordPress Plugin Mitsol Social Post Feed Cross-Site Scripting (1.10)
WordPress Plugin zM Ajax Login & Register Multiple Vulnerabilities (1.0.9)
Sqlite Use of Uninitialized Resource Vulnerability (CVE-2015-3414)
WordPress Plugin Calendar Event Multi View Security Bypass (1.4.06)
WordPress Plugin Custom Admin Page by BestWebSoft Cross-Site Scripting (0.1.1)