CVE-2014-0843

IBM Rational Focal Point - XSS

Title source: rule

Description

Cross-site scripting (XSS) vulnerability in IBM Rational Focal Point 6.4.x and 6.5.x before 6.5.2.3 and 6.6.x before 6.6.1 allows remote authenticated users to inject arbitrary web script or HTML by uploading a file.

References (3)

Scores

EPSS 0.0025
EPSS Percentile 48.2%

Details

CWE
CWE-79
Status published
Products (18)
ibm/rational_focal_point
ibm/rational_focal_point
ibm/rational_focal_point
ibm/rational_focal_point
ibm/rational_focal_point
ibm/rational_focal_point
ibm/rational_focal_point
ibm/rational_focal_point
ibm/rational_focal_point
ibm/rational_focal_point
... and 8 more
Published Feb 26, 2014
Tracked Since Feb 18, 2026