CVE-2024-28793

all versions

IBM Engineering Workflow Management 7.0.2 and 7.0.3 is vulnerable to stored cross-site scripting. Under certain configurations, th

4.9MEDIUM

CVE-2021-29701

all versions

IBM Engineering Workflow Management 7.0, 7.0.1, and 7.0.2 as well as IBM Rational Team Concert 6.0.6 and 6.0.6.1 could allow an au

4.3MEDIUM

CVE-2021-29844

all versions

IBM Jazz Team Server products is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to sen

8.8HIGH

CVE-2021-29786

all versions

IBM Jazz Team Server products stores user credentials in clear text which can be read by an authenticated user. IBM X-Force ID: 20

6.5MEDIUM

CVE-2021-29774

all versions

IBM Jazz Team Server products could allow an authenticated user to obtain elevated privileges under certain configurations. IBM X-

7.5HIGH

CVE-2021-29673

all versions

IBM Jazz Team Server products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScrip

5.4MEDIUM

CVE-2020-5004

all versions

IBM Jazz Foundation products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript

5.4MEDIUM

CVE-2020-4974

all versions

IBM Jazz Foundation products are vulnerable to server side request forgery (SSRF). This may allow an authenticated attacker to sen

6.3MEDIUM

CVE-2021-20507

all versions

IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed

5.4MEDIUM

CVE-2020-5031

all versions

IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed

5.4MEDIUM

CVE-2021-20519

all versions

IBM Jazz Team Server products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScrip

5.4MEDIUM

CVE-2020-4965

all versions

IBM Jazz Team Server products use weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sen

7.5HIGH

CVE-2020-4964

all versions

IBM Jazz Team Server products contain an undisclosed vulnerability that could allow an authenticated user to present a customized

4.3MEDIUM

CVE-2020-4920

all versions

IBM Jazz Team Server products are vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary Ja

5.4MEDIUM

CVE-2021-20520

all versions

IBM Jazz Foundation Products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript

5.4MEDIUM

CVE-2021-20518

all versions

IBM Jazz Foundation Products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript

5.4MEDIUM

CVE-2021-20506

all versions

IBM Jazz Foundation Products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript

5.4MEDIUM

CVE-2021-20504

all versions

IBM Jazz Foundation Products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript

5.4MEDIUM

CVE-2021-20503

all versions

IBM Jazz Foundation Products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript

5.4MEDIUM

CVE-2021-20502

all versions

IBM Jazz Foundation Products are vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote at

7.1HIGH

CVE-2021-20447

all versions

IBM Jazz Foundation Products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript

5.4MEDIUM

CVE-2021-20352

all versions

IBM Jazz Foundation Products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript

5.4MEDIUM

CVE-2021-20351

all versions

IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript cod

5.4MEDIUM

CVE-2021-20350

all versions

IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript cod

5.4MEDIUM

CVE-2021-20340

all versions

IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript cod

5.4MEDIUM

CVE-2020-4975

all versions

IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript cod

5.4MEDIUM

CVE-2020-4866

all versions

IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript cod

5.4MEDIUM

CVE-2020-4863

all versions

IBM Engineering products are vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScr

5.4MEDIUM

CVE-2020-4857

all versions

IBM Engineering products are vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScr

5.4MEDIUM

CVE-2020-4856

all versions

IBM Engineering products are vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScr

5.4MEDIUM

CVE-2021-20357

all versions

IBM Jazz Foundation products is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript

5.4MEDIUM

CVE-2020-4865

all versions

IBM Jazz Foundation products is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript

5.4MEDIUM

CVE-2020-4855

all versions

IBM Jazz Foundation products is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript

5.4MEDIUM

CVE-2020-4547

all versions

IBM Jazz Foundation products could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to

5.4MEDIUM

CVE-2020-4524

all versions

IBM Jazz Foundation products is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript

5.4MEDIUM

CVE-2020-4733

all versions

IBM Jazz Foundation products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript

5.4MEDIUM

CVE-2020-4697

all versions

IBM Jazz Foundation products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript

5.4MEDIUM

CVE-2020-4691

all versions

IBM Jazz Foundation Products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript

5.4MEDIUM

CVE-2020-4544

all versions

IBM Jazz Foundation Products could allow a remote attacker to obtain sensitive information when a detailed technical error message

4.3MEDIUM

CVE-2020-4487

all versions

IBM Jazz Foundation Products could allow a remote attacker to obtain sensitive information when a detailed technical error message

4.3MEDIUM

CVE-2020-4546

all versions

IBM Jazz Team Server based Applications are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary

5.4MEDIUM

CVE-2020-4522

all versions

IBM Jazz Team Server based Applications are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary

5.4MEDIUM

CVE-2020-4445

all versions

IBM Jazz Team Server based Applications are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary

5.4MEDIUM

CVE-2020-4525

all versions

IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed

5.4MEDIUM

CVE-2019-4748

all versions

IBM Jazz Team Server based Applications are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary

5.4MEDIUM

CVE-2019-4747

all versions

IBM Team Concert (RTC) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code i

5.4MEDIUM