CVE-2023-43054

all versions

IBM Engineering Test Management 7.0.2 and 7.0.3 is vulnerable to stored cross-site scripting. This vulnerability allows users to e

6.4MEDIUM

CVE-2021-38934

all versions

IBM Engineering Test Management 7.0, 7.0.1, and 7.0.2 is vulnerable to cross-site scripting. This vulnerability allows users to em

5.4MEDIUM

CVE-2020-5004

all versions

IBM Jazz Foundation products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript

5.4MEDIUM

CVE-2020-4974

all versions

IBM Jazz Foundation products are vulnerable to server side request forgery (SSRF). This may allow an authenticated attacker to sen

6.3MEDIUM

CVE-2021-29670

all versions

IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed

5.4MEDIUM

CVE-2021-29668

all versions

IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed

5.4MEDIUM

CVE-2021-20371

all versions

IBM Jazz Foundation and IBM Engineering products could allow a remote attacker to obtain sensitive information when an error messa

6.5MEDIUM

CVE-2021-20348

all versions

IBM Jazz Foundation and IBM Engineering products are vulnerable to server-side request forgery (SSRF). This may allow an authentic

5.4MEDIUM

CVE-2021-20347

all versions

IBM Jazz Foundation and IBM Engineering products are vulnerable to server-side request forgery (SSRF). This may allow an authentic

5.4MEDIUM

CVE-2021-20346

all versions

IBM Jazz Foundation and IBM Engineering products are vulnerable to server-side request forgery (SSRF). This may allow an authentic

5.4MEDIUM

CVE-2021-20345

all versions

IBM Jazz Foundation and IBM Engineering products are vulnerable to server-side request forgery (SSRF). This may allow an authentic

5.4MEDIUM

CVE-2021-20343

all versions

IBM Jazz Foundation and IBM Engineering products are vulnerable to server-side request forgery (SSRF). This may allow an authentic

5.4MEDIUM

CVE-2021-20338

all versions

IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed

5.4MEDIUM

CVE-2020-5030

all versions

IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed

5.4MEDIUM

CVE-2020-4977

all versions

IBM Engineering Lifecycle Optimization - Publishing is vulnerable to stored cross-site scripting. This vulnerability allows users

5.4MEDIUM

CVE-2020-4732

all versions

IBM Jazz Foundation and IBM Engineering products could allow an authenticated user to obtain sensitive information due to lack of

6.5MEDIUM

CVE-2020-4495

all versions

IBM Jazz Foundation and IBM Engineering products could allow a remote attacker to bypass security restrictions, caused by improper

8.8HIGH

CVE-2021-20519

all versions

IBM Jazz Team Server products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScrip

5.4MEDIUM

CVE-2020-4965

all versions

IBM Jazz Team Server products use weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sen

7.5HIGH

CVE-2020-4964

all versions

IBM Jazz Team Server products contain an undisclosed vulnerability that could allow an authenticated user to present a customized

4.3MEDIUM

CVE-2020-4920

all versions

IBM Jazz Team Server products are vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary Ja

5.4MEDIUM

CVE-2021-20351

all versions

IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript cod

5.4MEDIUM

CVE-2021-20350

all versions

IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript cod

5.4MEDIUM

CVE-2021-20340

all versions

IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript cod

5.4MEDIUM

CVE-2020-4975

all versions

IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript cod

5.4MEDIUM

CVE-2020-4866

all versions

IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript cod

5.4MEDIUM

CVE-2020-4863

all versions

IBM Engineering products are vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScr

5.4MEDIUM

CVE-2020-4857

all versions

IBM Engineering products are vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScr

5.4MEDIUM

CVE-2020-4856

all versions

IBM Engineering products are vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScr

5.4MEDIUM

CVE-2021-20357

all versions

IBM Jazz Foundation products is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript

5.4MEDIUM

CVE-2020-4865

all versions

IBM Jazz Foundation products is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript

5.4MEDIUM

CVE-2020-4855

all versions

IBM Jazz Foundation products is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript

5.4MEDIUM

CVE-2020-4547

all versions

IBM Jazz Foundation products could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to

5.4MEDIUM

CVE-2020-4524

all versions

IBM Jazz Foundation products is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript

5.4MEDIUM

CVE-2020-4733

all versions

IBM Jazz Foundation products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript

5.4MEDIUM

CVE-2020-4697

all versions

IBM Jazz Foundation products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript

5.4MEDIUM

CVE-2020-4691

all versions

IBM Jazz Foundation Products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript

5.4MEDIUM

CVE-2020-4544

all versions

IBM Jazz Foundation Products could allow a remote attacker to obtain sensitive information when a detailed technical error message

4.3MEDIUM

CVE-2020-4487

all versions

IBM Jazz Foundation Products could allow a remote attacker to obtain sensitive information when a detailed technical error message

4.3MEDIUM

CVE-2020-4546

all versions

IBM Jazz Team Server based Applications are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary

5.4MEDIUM

CVE-2020-4522

all versions

IBM Jazz Team Server based Applications are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary

5.4MEDIUM

CVE-2020-4445

all versions

IBM Jazz Team Server based Applications are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary

5.4MEDIUM

CVE-2020-4410

all versions

IBM Jazz Foundation and IBM Engineering products could allow an authenticated user to send a specially crafted HTTP GET request to

4.3MEDIUM

CVE-2020-4396

all versions

IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed

5.4MEDIUM

CVE-2019-4748

all versions

IBM Jazz Team Server based Applications are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary

5.4MEDIUM