CVE-2016-3003

IBM Connections Web UI suffers a Cross‑Site Scripting (XSS) vulnerability in versions 4.x up to 4.5 CR5, 5.0 before CR4, and 5.5 before CR1. The issue allows remote authenticated users to inject arbitrary script or HTML via an embedded string, as documented across multiple sources (NVD entries CV...