CVE-2024-28796 | IBM ClearQuest up to 9.1.0.6 Web UI intended cross site scripting (XFDB-286833)

Inserito da Angelo Barbosa | Lug 17, 2024 | CVE

A vulnerability was found in IBM ClearQuest up to 9.1.0.6. It has been rated as problematic. Affected by this issue is the function intended of the component Web UI. The manipulation leads to cross site scripting.

This vulnerability is handled as CVE-2024-28796. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-28796 | IBM ClearQuest up to 9.1.0.6 Web UI intended cross site scripting (XFDB-286833)

Post correlati

CVE-2024-50335 | SalesAgility SuiteCRM up to 7.14.5/8.7.0 Edit Profile Page o.js Publish Key cross site scripting (GHSA-8rw6-g96j-3w7m)

CVE-2024-36509 | Fortinet FortiWeb up to 6.3.23/7.0.10/7.2.10/7.4.3/7.6.0 Log Access Event Page exposure of sensitive system information to an unauthorized control sphere (FG-IR-24-180)

CVE-2024-39123 | janeczku Calibre-Web up to 0.6.21 edit_book_comments cross site scripting

CVE-2024-5984 | itsourcecode Online Bookstore 1.0 book.php bookisbn sql injection