Description
IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 193738.
Remediation
References
Related Vulnerabilities
Joomla Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-9837)
WordPress Plugin 3D Product configurator for WooCommerce Arbitrary File Upload (1.5.531)
WordPress Plugin Quick Restaurant Menu Multiple Vulnerabilities (2.0.2)
WordPress Plugin SoundCloud Is Gold Cross-Site Scripting (2.3.1)
WordPress Plugin WP e-Commerce-Store Toolkit Privilege Escalation (2.0.1)