CVE-2016-5897
N/A
N/A
Summary
IBM Jazz Reporting Service (JRS) is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| IBM Corporation | Jazz Reporting Service | 6 | affected |
| IBM Corporation | Jazz Reporting Service | 5.0 | affected |
| IBM Corporation | Jazz Reporting Service | 5.0.1 | affected |
| IBM Corporation | Jazz Reporting Service | 5.0.2 | affected |
| IBM Corporation | Jazz Reporting Service | 6.0 | affected |
| IBM Corporation | Jazz Reporting Service | 6.0.1 | affected |
| IBM Corporation | Jazz Reporting Service | 6.0.2 | affected |
Weaknesses
- Gain Access
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.