CVE-2017-1315

IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially...

CVE-2017-1715

IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially...

CVE-2017-1293

CVE-2017-1293 affects IBM Rational Quality Manager (RQM) and Rational Collaborative Lifecycle Management (RCLM) versions 5.0–5.0.2 and 6.0–6.0.5. The issue is a cross-site scripting vulnerability in the Web UI that can allow embedding arbitrary JavaScript, potentially leading to credentials discl...

CVE-2017-1652

CVE-2017-1652 affects IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management, with cross-site scripting in the Web UI in RQM/CLM versions 5.0–5.0.2 and 6.0–6.0.5. The root cause is improper handling of user-supplied input in the web interface, enabling an attacker to emb...

CVE-2017-1280

CVE-2017-1280 affects IBM Rational Quality Manager (RQM) and Rational Collaborative Lifecycle Management (CLM) 5.0–5.0.2 and 6.0–6.0.5. The root cause is cross-site scripting in the Web UI that allows embedding arbitrary JavaScript, potentially leading to credentials disclosure within a trusted s...

CVE-2017-1316

Affected products/versions: IBM Rational Quality Manager (RQM) and Rational Collaborative Lifecycle Management (RCLM) 5.0–5.0.2 and 6.0–6.0.5. Issue: cross-site scripting (XSS) in the Web UI enables embedding arbitrary JavaScript, potentially leading to credential disclosure within a trusted sess...

CVE-2017-1293

IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially...

CVE-2017-1294

IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially...

CVE-2017-1317

IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially...

CVE-2017-1691

IBM Rational Quality Manager and Rational Collaborative Lifecycle Management versions 5.0–5.0.2 and 6.0–6.0.5 are affected by a cross-site scripting (XSS) vulnerability in the Web UI that can lead to credentials disclosure within a trusted session. Root cause is not explicitly detailed in the pro...

CVE-2017-1564

IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially...

CVE-2017-1621

IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially...

CVE-2017-1281

IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially...

CVE-2017-1315

CVE-2017-1315 involves cross-site scripting in IBM Rational Quality Manager and Rational Collaborative Lifecycle Management. The vulnerability affects Rational Quality Manager and CLM versions 5.0–5.0.2 and 6.0–6.0.5, enabling an attacker to inject JavaScript into the Web UI and potentially discl...

CVE-2017-1281

CVE-2017-1281 affects IBM Rational Quality Manager and Rational Collaborative Lifecycle Management versions 5.0–5.0.2 and 6.0–6.0.5. The issue is a cross-site scripting vulnerability in the Web UI that allows embedding arbitrary JavaScript, potentially leading to credentials disclosure within a t...

CVE-2017-1561

CVE-2017-1561 is a cross‑site scripting vulnerability affecting IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management. Technical details in connected docs show the issue exists in RQM/RCLM versions 5.0–5.0.2 and 6.0–6.0.5, enabling an attacker to inject JavaScript in th...

CVE-2017-1277

CVE-2017-1277 affects IBM Rational Quality Manager (RQM) and IBM Rational Collaborative Lifecycle Management (RCLM) versions 5.0–5.0.2 and 6.0–6.0.5. The vulnerability is a cross-site scripting flaw that lets an attacker embed arbitrary JavaScript in the Web UI, potentially leading to credential ...

CVE-2017-1565

CVE-2017-1565 affects IBM Rational Quality Manager (RQM) and Rational Collaborative Lifecycle Management (RCLM) versions 5.0–5.0.2 and 6.0–6.0.5. The vulnerability is a cross-site scripting flaw in the Web UI that could allow an attacker to embed arbitrary JavaScript, potentially leading to crede...

CVE-2017-1568

IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially...

CVE-2017-1314

CVE-2017-1314 affects IBM Rational Quality Manager and Rational Collaborative Lifecycle Management versions 5.0–5.0.2 and 6.0–6.0.5. The Web UI is vulnerable to cross-site scripting (XSS) , enabling an attacker to embed arbitrary JavaScript that could lead to credentials disclosure within a trust...