Description
The Jazz help system in IBM Rational Collaborative Lifecycle Management 4.0 through 5.0.2, Rational Quality Manager 4.0 through 4.0.7 and 5.0 through 5.0.2, Rational Team Concert 4.0 through 4.0.7 and 5.0 through 5.0.2, Rational Requirements Composer 4.0 through 4.0.7, Rational DOORS Next Generation 4.0 through 4.0.7 and 5.0 through 5.0.2, Rational Engineering Lifecycle Manager 4.0.3 through 4.0.7 and 5.0 through 5.0.2, Rational Rhapsody Design Manager 4.0 through 4.0.7 and 5.0 through 5.0.2, and Rational Software Architect Design Manager 4.0 through 4.0.7 and 5.0 through 5.0.2 allows remote attackers to read JSP source code via a crafted request.
Remediation
References
Related Vulnerabilities
WordPress Plugin Import Woocommerce Cross-Site Scripting (1.0.1)
WordPress Plugin WPML (WordPress Multilingual) Cross-Site Scripting (3.2.6)
MySQL CVE-2019-2689 Vulnerability (CVE-2019-2689)
PHP Integer Overflow or Wraparound Vulnerability (CVE-2019-11048)
WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2020-10968)