3 matches found
Security Bulletin: IBM Data Studio Web Console is vulnerable to cross-site request forgery, caused by improper validation of browser request headers.
Abstract A service in the IBM Data Studio Web Console versions 3.1.0 and 3.1.1 is impacted by cross-site request forgery. By persuading an authenticated user to visit a malicious web site, a remote attacker could exploit this vulnerability to obtain sensitive information. Content VULNERABILITY...
CVE-2013-2980
CVE-2013-2980 affects IBM Data Studio Web Console 3.1.0/3.1.1. A cross-site request forgery (CSRF) vulnerability arises from improper validation of browser request headers, allowing an authenticated user to be persuaded to visit a malicious site and cause access to sensitive monitored database in...
CVE-2013-2980
Cross-site request forgery CSRF vulnerability in the Web Console in IBM Data Studio 3.1.0 and 3.1.1 allows remote attackers to hijack the authentication of arbitrary users for requests that access monitored database information...