Description
IBM Team Concert (RTC) 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 148620.
Remediation
References
Related Vulnerabilities
Moodle Missing Authorization Vulnerability (CVE-2024-48898)
Internet Information Services Other Vulnerability (CVE-2001-0334)
WordPress Plugin Share This Image Unspecified Vulnerability (1.19)
WordPress Plugin RSVPMaker Server-Side Request Forgery (8.7.2)
WordPress Plugin Facebook Members Cross-Site Request Forgery (5.0.4)