2 matches found
CVE-2016-3006
Cross-site scripting XSS vulnerability in the Web UI in IBM Connections 4.x through 4.5 CR5, 5.0 before CR4, and 5.5 before CR1 allows remote authenticated users to inject arbitrary web script or HTML via an embedded string, a different vulnerability than CVE-2016-3001 and CVE-2016-3003...
CVE-2016-3006
CVE-2016-3006 is a Cross-Site Scripting (XSS) vulnerability in the IBM Connections Web UI. Affected software includes IBM Connections versions 4.x up to 4.5 CR5, 5.0 up to CR4, and 5.5 up to CR1. The issue allows remote authenticated users to inject arbitrary web script or HTML via an embedded st...