12 matches found
EUVD-2012-2154
Malware in sbrugna...
CVE-2012-2160
IBM Rational Change 5.3 is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using the SUPPTEMPLATEFLAG parameter in a specially-crafted URL to execute script in a victim's Web browser within the security...
The vulnerability of the IBM Rational Change software lies in the lack of protective measures for the website structure, allowing attackers to disclose sensitive information about user accounts.
The vulnerability of the IBM Rational Change software exists due to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability can allow a malicious actor, operating remotely, to disclose sensitive information related to user accounts...
IBM Rational Change Cross-Site Scripting Vulnerability (CNVD-2022-77517)
IBM Rational Change is a software tool from IBM Corporation, USA. provides software configuration management functionality for all artifacts related to software development, including source code, documentation and images, as well as final build software executables and libraries. A cross-site...
CVE-2012-2160
IBM Rational Change 5.3 is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using the SUPPTEMPLATEFLAG parameter in a specially-crafted URL to execute script in a victim's Web browser within the security...
Cross site scripting
IBM Rational Change 5.3 is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using the SUPPTEMPLATEFLAG parameter in a specially-crafted URL to execute script in a victim's Web browser within the security...
IBM Rational Change 跨站脚本漏洞
IBM Rational Change is a software tool from IBM Corporation, USA. provides software configuration management functionality for all artifacts related to software development, including source code, documentation and images, as well as final build software executables and libraries. A cross-site...
Security Bulletin: Vulnerability in Jasper, Version 8 Service Refresh 5 Fix Pack 33, used in Jetty Server 9.4.14 where Rational Change is deployed.
Summary A security vulnerability in Jasper, Version 8 Service Refresh 5 Fix Pack 33, used in Jetty Server 9.4.14 is affecting IBM Rational Change. Vulnerability Details CVEID: CVE-2020-27216 DESCRIPTION: Eclipse Jetty could allow a local authenticated attacker to gain elevated privileges on the...
CVE-2012-2160
IBM Rational Change 5.3 is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using the SUPPTEMPLATEFLAG parameter in a specially-crafted URL to execute script in a victim's Web browser within the security...
Security Bulletin: Multiple vulnerabilities in Jasper used in Jetty 8.1.3 Server where Rational Change is deployed
Summary There are multiple vulnerabilities in Jasper, Version 2 Service Refresh 2 Fix Pack 2, used by Jetty 8.1.3 is affecting IBM Rational Change. Vulnerability Details The following are the list of vulnerabilities affecting IBM Rational Change: CVEID: CVE-2017-7658 DESCRIPTION: Eclipse Jetty is...
Security Bulletin: Rational Change can be affected by vulnerabilities in the IBM Eclipse Help System (CVE-2013-0464 and CVE-2013-0467)
Summary IBM Rational Change can be affected by two vulnerabilities Cross-site scripting and Help system's source code disclosure by using a specially crafted URL in the IBM Eclipse Help System IEHS, which is used to display the IBM Rational Change help content. Vulnerability Details | Subscribe t...
Security Bulletin: Security vulnerability in Oracle Java 7 impacts IBM Rational Change (CVE-2013-0422)
Summary Potential security vulnerability issues may occur if you are using the Oracle Java 7 updates reported in Oracle Security Alert for CVE-2013-0422 when using IBM Rational Change product. Vulnerability Details | Subscribe to My Notifications to be notified of important product support alerts...