CVE-2010-3896
CVE-2010-3896 affects IBM OmniFind Enterprise Edition 8.x/9.x. The vulnerability is lack of authentication in the ESSearchApplication area, enabling a remote attacker to modify server configuration via palette.do. The connected advisory set lists related issues (XSS, XSRF, session issues, etc.) a...