2 matches found
CVE-2015-7465
CVE-2015-7465 concerns the Lifecycle Query Engine (LQE) within IBM Jazz Reporting Service (JRS). A CSRF vulnerability affects JRS 6.0 prior to 6.0.0-Rational-CLM-ifix005, enabling remote authenticated users to hijack the authentication of arbitrary users via requests that insert XSS sequences. Th...
CVE-2015-7465
Cross-site request forgery CSRF vulnerability in Lifecycle Query Engine LQE in IBM Jazz Reporting Service JRS 6.0 before 6.0.0-Rational-CLM-ifix005 allows remote authenticated users to hijack the authentication of arbitrary users for requests that insert XSS sequences. Recent assessments: Assesse...