Arbitrary Web Script Injection in IBM Rational ClearQuest Web Client

CVE-2012-5757

Cross-site scripting (XSS) vulnerability in the Web Client in IBM Rational ClearQuest 7.1.x before 7.1.2.10 and 8.x before 8.0.0.6 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.

Learn more about our Cis Benchmark Audit For Ibm I.