CVE-2008-3550

2008-08-0819:00:00

mitre

www.cve.org

5.6 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

68.3%

JSON

The CQWeb login page in IBM Rational ClearQuest 7.0.1 allows remote attackers to obtain potentially sensitive information (page source code) via a combination of ?script? and ?/script? sequences in the id field, possibly related to a cross-site scripting (XSS) vulnerability.