Ibm - Rational Requisitepro CVE

Filtered by vendor Ibm Subscribe

Filtered by product Rational Requisitepro

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2009-3730	1 Ibm	1 Rational Requisitepro	2024-02-04	4.3 MEDIUM	N/A
Multiple cross-site scripting (XSS) vulnerabilities in the ReqWeb Help feature (aka the Web Client Help system) in IBM Rational RequisitePro 7.1.0 allow remote attackers to inject arbitrary web script or HTML via (1) the operation parameter to ReqWebHelp/advanced/workingSet.jsp, or the (2) searchWord, (3) maxHits, (4) scopedSearch, or (5) scope parameter to ReqWebHelp/basic/searchView.jsp.

Vulnerabilities (CVE)