Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:27 a.m.8 views

CVE-2023-45181

IBM Jazz Foundation 7.0.2 and below are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...

6.1CVSS6.3AI score0.00288EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2024/11/26 9:12 p.m.14 views

Security Bulletin: The IBM® Engineering Lifecycle Management is vulnerable to cross-site scripting

Summary A cross-site scripting vulnerability has been identified on the URL "/jts/auth/authrequired". The web-url does not properly sanitise and escape xss payload before out-putting a 'layout' parameter that users supply to the response body leading to a Cross Site Scripting attack. This bulleti...

6.1CVSS5.4AI score0.00288EPSS
Exploits0Affected Software1
OSV
OSV
added 2024/11/25 4:15 p.m.3 views

CVE-2023-45181

IBM Jazz Foundation 7.0.2 and below are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...

6.1CVSS5.4AI score0.00288EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/25 3:48 p.m.26 views

CVE-2023-45181 IBM Jazz Foundation cross-site scripting

IBM Jazz Foundation 7.0.2 and below are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...

6.1CVSS0.00288EPSS
Exploits0References1
Rows per page
Query Builder