2 matches found
CVE-2015-7485
Cross-site scripting XSS vulnerability in IBM Rational Engineering Lifecycle Manager 3.0 before 3.0.1.6 iFix7 Interim Fix 1, 4.0 before 4.0.7 iFix10, 5.0 before 5.0.2 iFix15, and 6.0 before 6.0.1 iFix4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. IBM...
CVE-2015-7485
IBM CVE-2015-7485 is an XSS vulnerability in IBM Rational Engineering Lifecycle Manager across multiple releases (3.0.1.6 iFix7 Interim Fix 1; 4.0.7 iFix10; 5.0.2 iFix15; 6.0.1 iFix4) caused by improper validation of user-supplied input. A remote attacker can craft a URL to execute script in the ...