CVE Published: 05/07/2017 |
CVE Updated: 17/09/2024 |
CVE Year: 2016 Source: ibm |
Vendor: IBM |
Product: Jazz Reporting Service Status : PUBLISHED
CVE-2016-9988 Description
IBM Jazz Foundation Reporting Service (JRS) 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 120554.