11 matches found
EUVD-2015-7331
Malware in sbrugna...
EUVD-2015-7324
Malware in sbrugna...
CVE-2015-7407
Cross-site request forgery CSRF vulnerability in Lotus Mashups in IBM Mashup Center 3.0.0.1 allows remote attackers to hijack the authentication of arbitrary users for requests that insert XSS sequences...
CVE-2015-7400
The Lotus Mashups component in IBM Mashup Center 3.0.0.1 allows remote authenticated users to cause a denial of service CPU consumption via an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity XXE issue...
Xxe
The Lotus Mashups component in IBM Mashup Center 3.0.0.1 allows remote authenticated users to cause a denial of service CPU consumption via an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity XXE issue...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in Lotus Mashups in IBM Mashup Center 3.0.0.1 allows remote attackers to hijack the authentication of arbitrary users for requests that insert XSS sequences...
CVE-2015-7400
The Lotus Mashups component in IBM Mashup Center 3.0.0.1 allows remote authenticated users to cause a denial of service CPU consumption via an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity XXE issue...
CVE-2015-7407
CVE-2015-7407 describes a CSRF vulnerability in IBM Mashups (Lotus Mashups within IBM Mashup Center 3.0.0.1) that could allow a remote attacker to hijack a user’s authentication for requests that insert XSS content. The connected IBM bulletin set confirms the vulnerability and lists remediation p...
CVE-2015-7400
CVE-2015-7400 affects the Lotus Mashups component in IBM Mashup Center 3.0.0.1, causing a denial of service via XML External Entity (XXE) processing when handling XML data. The issue is exploitable by remote authenticated users and is tied to XXE. IBM BPM/Cloud Orchestrator bulletins indicate thi...
CVE-2015-7407
Cross-site request forgery CSRF vulnerability in Lotus Mashups in IBM Mashup Center 3.0.0.1 allows remote attackers to hijack the authentication of arbitrary users for requests that insert XSS sequences...
JVN#97334690: IBM Lotus vulnerable to denial-of-service (DoS)
IBM Lotus product line contains a denial-of-service DoS vulnerability due to an issue in Java Runtime Environment JRE. Impact A remote attacker may cause a denial-of-service DoS. Solution Apply a patch Apply the appropriate patch according to the information provided by the developer. Products...