CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0CVE-2023-45181 – IBM Jazz Foundation cross-site scripting
https://notcve.org/view.php?id=CVE-2023-45181
25 Nov 2024 — IBM Jazz Foundation 7.0.2 and below are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. • https://www.ibm.com/support/pages/node/7176207 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.4EPSS: 0%CPEs: 5EXPL: 0CVE-2021-39059
https://notcve.org/view.php?id=CVE-2021-39059
11 May 2022 — IBM Jazz Foundation (IBM Jazz Team Server 6.0.6, 6.0.6.1, 7.0, 7.0.1, and 7.0.2) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 214619. IBM Jazz Foundation (IBM Jazz Team Server 6.0.6, 6.0.6.1, 7.0, 7.0.1 y 7.0.2) es vulnerable a un ataque de tipo cross-site scripting. Esta vulnerabilidad permite a usuarios i... • https://exchange.xforce.ibmcloud.com/vulnerabilities/214619 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •