Description
IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 194451.
Remediation
References
Related Vulnerabilities
MyBB Improper Access Control Vulnerability (CVE-2016-9415)
IBM RTC Inadequate Encryption Strength Vulnerability (CVE-2017-1701)
IBM WebSEAL URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-4153)
ReviveAdserver Other Vulnerability (CVE-2014-8875)
Joomla! Core 1.0.x Multiple Vulnerabilities (1.0.0 - 1.0.12)