CVE-2019-4249
https://notcve.org/view.php?id=CVE-2019-4249
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 159647. IBM Rational Collaborative Lifecycle Management 6.0 a 6.0.6.1 es vulnerable a los scripts entre sitios. Esta vulnerabilidad permite a los usuarios incrustar código JavaScript arbitrario en la interfaz de usuario web, por lo tanto, alterar la funcionalidad deseada que podría llevar a la revelación de credenciales dentro de una sesión segura. • http://www.ibm.com/support/docview.wss?uid=ibm10956525 https://exchange.xforce.ibmcloud.com/vulnerabilities/159647 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2019-4084
https://notcve.org/view.php?id=CVE-2019-4084
IBM Jazz Foundation products (IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1) could allow an authenticated user to obtain sensitive information from CLM Applications that could be used in further attacks against the system. IBM X-Force ID: 157384. Los productos de IBM Jazz Foundation (IBM Rational Collaborative Lifecycle Management 6.0 a 6.0.6.1) podrían permitirle a un usuario identificado obtener información confidencial de las aplicaciones CLM que podrían usarse en futuros ataques contra el sistema. ID de IBM X-Force: 157384. • http://www.ibm.com/support/docview.wss?uid=ibm10956525 https://exchange.xforce.ibmcloud.com/vulnerabilities/157384 •
CVE-2019-4083
https://notcve.org/view.php?id=CVE-2019-4083
IBM Jazz Foundation products (IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 157383. Los productos de IBM Jazz Foundation (IBM Rational Collaborative Lifecycle Management 6.0 a 6.0.6.1) son vulnerables a los cross-site scripting. Esta vulnerabilidad permite a los usuarios incrustar código JavaScript arbitrario en la interfaz de usuario web, por lo tanto, alterar la funcionalidad deseada que podría llevar a la revelación de credenciales dentro de una sesión segura. • http://www.ibm.com/support/docview.wss?uid=ibm10956525 https://exchange.xforce.ibmcloud.com/vulnerabilities/157383 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2018-1893
https://notcve.org/view.php?id=CVE-2018-1893
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 152157. IBM Rational Collaborative Lifecycle Management 6.0 a 6.0.6.1 es vulnerable a los scripts entre sitios. Esta vulnerabilidad permite a los usuarios incrustar código JavaScript arbitrario en la interfaz de usuario web, por lo tanto, alterar la funcionalidad deseada que podría llevar a la revelación de credenciales dentro de una sesión segura. • http://www.ibm.com/support/docview.wss?uid=ibm10956525 https://exchange.xforce.ibmcloud.com/vulnerabilities/152157 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2018-1892
https://notcve.org/view.php?id=CVE-2018-1892
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 152156. IBM Rational Collaborative Lifecycle Management 6.0 a 6.0.6.1 es vulnerable a los scripts entre sitios. Esta vulnerabilidad permite a los usuarios incrustar código JavaScript arbitrario en la interfaz de usuario web, por lo tanto, alterar la funcionalidad deseada que podría llevar a la revelación de credenciales dentro de una sesión segura. • http://www.ibm.com/support/docview.wss?uid=ibm10956525 https://exchange.xforce.ibmcloud.com/vulnerabilities/152156 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •