CVE-2019-4495
IBM Jazz Reporting Service (JRS) versions 6.0, 6.0.1, 6.0.2, 6.0.3, 6.0.4, 6.0.5, 6.0.6 and 6.0.6.1 are affected by a cross-site scripting (XSS) vulnerability in the Web UI that lets an attacker embed arbitrary JavaScript, potentially leading to credentials disclosure within a trusted session. Th...