CVE-2018-1916
CVE-2018-1916 affects IBM Jazz Foundation (IBM Rational Engineering Lifecycle Manager 5.0–6.0.6). The vulnerability is a cross-site scripting flaw in the Web UI that allows embedding arbitrary JavaScript, potentially enabling credential disclosure within a trusted session. The IBM bulletin lists ...