3 matches found
Security Bulletin: Potential Security Vulnerabilites fixed in IBM WebSphere Application Server 8.0.0.8
Summary Cross reference list for security vulnerabilites fixed in IBM WebSphere Application Server 8.0.0.8 Vulnerability Details CVE ID:CVE-2013-0460PM72275 DESCRIPTION: WebSphere Application Server could be vulnerable to a cross-site request forgery, caused by improper validation of portlets in...
CVE-2013-0460
Cross-site request forgery CSRF vulnerability in the portlet subsystem in the administrative console in IBM WebSphere Application Server WAS 6.1 before 6.1.0.47 and 7.0 before 7.0.0.27 allows remote attackers to hijack the authentication of arbitrary users for requests that insert cross-site...
CVE-2013-0460
CVE-2013-0460: IBM WebSphere Application Server contains a CSRF vulnerability in the portlet-based administrative console. An attacker could hijack user authentication and inject XSS sequences via requests to vulnerable portlets in WAS 6.1 up to 6.1.0.46 and 7.0 up to 7.0.0.26. Root cause: improp...