CVE-2017-1682
The coordinated sources confirm a Cross-Site Scripting vulnerability in IBM Connections Web UI affecting IBM Connections versions 4.0, 4.5, 5.0, 5.5, and 6.0. The issue allows an attacker to embed arbitrary JavaScript in the Web UI, potentially altering functionality and leading to credentials di...