Description
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 148614.
Remediation
References
Related Vulnerabilities
Apache Tomcat Use of Incorrectly-Resolved Name or Reference Vulnerability (CVE-2021-24122)
Moodle Resource Management Errors Vulnerability (CVE-2015-5332)
WordPress Plugin WP-ViperGB Cross-Site Scripting (1.3.15)
Ruby Resource Management Errors Vulnerability (CVE-2014-6438)
Nginx Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2018-16845)