2 matches found
CVE-2014-8247
CA Release Automation (formerly iTKO LISA Release Automation) before 4.7.1 b448 contains an XSS vulnerability (CVE-2014-8247) caused by insufficient input filtering. Remote attackers could inject arbitrary script/HTML via unspecified vectors, potentially affecting users’ sessions. CA’s security n...
CA LISA Release Automation contains multiple vulnerabilities
Overview CA LISA Release Automation 4.7.1.385 contains multiple vulnerabilities Description CWE-352: Cross-Site Request Forgery CSRF - CVE-2014-8246CA LISA Release Automation 4.7.1.385 contains a global Cross-Site Request Forgery CSRF vulnerability. The application allows a malicious user to...