2 matches found
Security Bulletin: Cross-site scripting vulnerabilities affect IBM® Rational® Team Concert
Summary IBM Team Concert RTC is vulnerable to multiple cross-site scripting vulnerabilities. Vulnerability Details CVEID: CVE-2016-9701 DESCRIPTION: IBM Team Concert is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus alteri...
CVE-2017-1113
Affected software: IBM Rational Team Concert (RTC) and Rational CLM 4.0–6.0.3. Issue: cross-site scripting in the Web UI that allows embedding arbitrary JavaScript, potentially causing credentials disclosure within a trusted session. Affected components: RTC/CLM Web UI across 4.x–6.0.x line (RTC ...