5 matches found
EUVD-2020-6357
Malware in sbrugna...
CVE-2020-14203
WebFOCUS Business Intelligence 8.0 SP6 allows a Cross-Site Request Forgery CSRF attack against administrative users within the /ibiapps/WFServlet.ibfs endpoint. The impact may be creation of an administrative user. It can also be exploited in conjunction with CVE-2016-9044...
Cross site request forgery (csrf)
WebFOCUS Business Intelligence 8.0 SP6 allows a Cross-Site Request Forgery CSRF attack against administrative users within the /ibiapps/WFServlet.ibfs endpoint. The impact may be creation of an administrative user. It can also be exploited in conjunction with CVE-2016-9044...
CVE-2020-14203
WebFOCUS Business Intelligence 8.0 SP6 allows a Cross-Site Request Forgery CSRF attack against administrative users within the /ibiapps/WFServlet.ibfs endpoint. The impact may be creation of an administrative user. It can also be exploited in conjunction with CVE-2016-9044...
CVE-2016-9044
CVE-2016-9044 is confirmed in Information Builders WebFOCUS Business Intelligence Portal version 8.1. A command injection vulnerability exists when a specially crafted web parameter is processed, allowing an authenticated attacker to trigger arbitrary commands via a crafted web request. Multiple ...