CVE-2017-1146
CVE-2017-1146 affects IBM Content Navigator in versions 2.0.3 and 3.0.0. The issue is a cross-site scripting vulnerability in the Web UI that lets an attacker embed arbitrary JavaScript, potentially leading to credentials disclosure within a trusted session. Root cause: insecure handling of user ...