Description

IBM Jazz Foundation Products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 198437.

Remediation

References

CVE-2021-20518

Related Vulnerabilities

WordPress 4.7.x Multiple Vulnerabilities (4.7 - 4.7.17)

WordPress Plugin WordPress Ping Optimizer Cross-Site Request Forgery (2.35.1.2.3)

WordPress Clickjacking Vulnerability (0.7 - 3.1.2)

Joomla! Core Multiple Vulnerabilities (2.5.0 - 3.10.6)

Oracle HTTP Server NULL Pointer Dereference Vulnerability (CVE-2019-10097)

Severity

Medium

Classification

CVE-2021-20518 CWE-707 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Tags

Missing Update Known Vulnerabilities