CVE-2019-4494
CVE-2019-4494 affects IBM Jazz Reporting Service (JRS) versions 6.0 through 6.0.6.1, where the web UI is vulnerable to cross-site scripting that can embed arbitrary JavaScript and potentially disclose credentials in a trusted session. The IBM Security Bulletin lists affected versions and provides...