2 matches found
IBM WebSphere Portal 8.0.0.x < 8.0.0.1 CF15 / 8.5.0.0 < 8.5.0.0 CF05 Multiple XSRF / XSS (PI34987, PI33329, PI35228)
The version of IBM WebSphere Portal installed on the remote host is 8.0.0.x prior to 8.0.0.1 Cumulative Fix 15 / 8.5.0.0 prior to 8.5.0.0 Cumulative Fix 05. It is, therefore, affected by multiple vulnerabilities : - An unspecified XSRF vulnerability exists due to improper validation of...
CVE-2015-0139
CVE-2015-0139 is an XSS vulnerability in IBM WebSphere Portal. Affected versions: WebSphere Portal 8.0.0 through 8.0.0.1 CF15 and 8.5.0 before CF05. The issue allows remote authenticated users to inject arbitrary script/HTML via a crafted URL. The connected sources reiterate the same impact and d...