2 matches found
CVE-2015-7407
Cross-site request forgery CSRF vulnerability in Lotus Mashups in IBM Mashup Center 3.0.0.1 allows remote attackers to hijack the authentication of arbitrary users for requests that insert XSS sequences...
CVE-2015-7407
CVE-2015-7407 describes a CSRF vulnerability in IBM Mashups (Lotus Mashups within IBM Mashup Center 3.0.0.1) that could allow a remote attacker to hijack a user’s authentication for requests that insert XSS content. The connected IBM bulletin set confirms the vulnerability and lists remediation p...