Multiple cross-site scripting (XSS) vulnerabilities in the web interface in ClearCase RWP server in IBM Rational ClearCase 7.0.0 prior to 7.0.0.4, and 7.0.1.1-RATL-RCC-IFIX02 and possibly other 7.0.1 versions prior to 7.0.1.3, allow remote malicious users to inject arbitrary web script or HTML via the PATH_INFO of a URI associated with a VOB page.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm rational clearquest 7.0.1 |
||
ibm rational clearquest 7.0.1.1 |
||
ibm rational clearquest 7.0.0.0 |
||
ibm rational clearquest 7.0.0.1 |
||
ibm rational clearquest 7.0.0.2 |
||
ibm rational clearquest 7.0.0.3 |
||
ibm rational clearquest 7.0.1.2 |