Description
IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 192435.
Remediation
References
Related Vulnerabilities
WordPress Plugin Welcart e-Commerce Multiple Vulnerabilities (1.4.17)
Serendipity Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2016-10752)
WordPress Plugin Web to Print Online Designer Security Bypass (2.3.0)
WordPress Plugin Simple Popup Newsletter Cross-Site Scripting (1.4.7)