Description
IBM Jazz Foundation Products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 198231.
Remediation
References
Related Vulnerabilities
WordPress Plugin Wordpress Poll SQL Injection (36)
WordPress Plugin GorillaForms-Custom Contact Forms Unspecified Vulnerability (2.0.3)
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-20405)
Drupal Core 7.x Multiple Vulnerabilities (7.0 - 7.10)
WordPress Plugin Buddypress Xprofile Custom Fields Type Arbitrary File Deletion (2.6.3)