Description
IBM Rational Team Concert 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 141802.
Remediation
References
Related Vulnerabilities
WordPress Plugin Weather Effect-Christmas Santa Snow Falling Cross-Site Request Forgery (1.3.3)
MySQL CVE-2020-2760 Vulnerability (CVE-2020-2760)
phpMyFAQ Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-0792)
WordPress 3.7.x Multiple Vulnerabilities (3.7 - 3.7.16)
WordPress Plugin Football Pool Arbitrary File Upload (2.6.3)