Cross-site scripting (XSS) vulnerability in Report Builder in IBM Jazz Reporting Service (JRS) 5.x before 5.0.2-Rational-CLM-ifix011 and 6.0 before 6.0.0-Rational-CLM-ifix005 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
CPE | Name | Operator | Version |
---|---|---|---|
jazz_reporting_service | eq | 5.0.2 | |
jazz_reporting_service | eq | 6.0 | |
jazz_reporting_service | eq | 5.0 | |
jazz_reporting_service | eq | 5.0.1 |