2 matches found
CVE-2014-4838
Cross-site scripting XSS vulnerability in GanttProjectSchedulerPopup.jsp in IBM TRIRIGA Application Platform 3.2 and 3.3 before 3.3.0.2, 3.3.1 before 3.3.1.3, 3.3.2 before 3.3.2.2, and 3.4 before 3.4.0.1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...
CVE-2014-4838
CVE-2014-4838 describes a cross-site scripting (XSS) vulnerability in the IBM TRIRIGA Application Platform, specifically in GanttProjectSchedulerPopup.jsp. Affected versions include 3.2 and 3.3 before 3.3.0.2, 3.3.1 before 3.3.1.3, 3.3.2 before 3.3.2.2, and 3.4 before 3.4.0.1. The issue allows re...