3 matches found
Cross site scripting
IBM Jazz Foundation Reporting Service JRS 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Forc...
CVE-2016-9987
IBM Jazz Foundation Reporting Service JRS 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Forc...
CVE-2016-9987
The CVE-2016-9987 entry describes a Cross‑Site Scripting vulnerability in IBM Jazz Foundation Reporting Service (JRS) present in JRS 5.0 and 6.0 (component of Rational Insight/RRDI). The vulnerability allows embedding arbitrary JavaScript in the Web UI, potentially altering functionality and enab...