Description
IBM Jazz Foundation (IBM Rational Engineering Lifecycle Manager 5.0 through 6.0.6) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 153495.
Remediation
References
Related Vulnerabilities
WordPress 4.1.x Multiple Vulnerabilities (4.1 - 4.1.27)
LimeSurvey Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-16397)
Dot CMS Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2017-11466)
Django Incorrect Regular Expression Vulnerability (CVE-2018-7536)
TYPO3 Improper Input Validation Vulnerability (CVE-2011-4902)