2 matches found
CVE-2019-4431
IBM Rational Publishing Engine (RPE) versions 6.0.6 and 6.0.6.1 are affected by a cross-site scripting vulnerability in the Web UI, allowing attackers to inject arbitrary JavaScript and potentially disclose credentials in a trusted session. Root cause: Web UI XSS; impact as described in CVE-2019-...
Security Bulletin: Multiple vulnerabilities affect Rational Publishing Engine
Summary Multiple security vulnerabilities affecting Rational Publishing Engine. Vulnerability Details CVEID: CVE-2015-0254 DESCRIPTION: Apache Standard Taglibs before 1.2.3 allows remote attackers to execute arbitrary code or conduct external XML entity XXE attacks via a crafted XSLT extension in...