3 matches found
CVE-2013-0467
CVE-2013-0467 concerns a vulnerability in the IBM Eclipse Help System (IEHS) that is shipped with multiple IBM products (notably IBM WebSphere Application Server, IBM InfoSphere Information Server, SPSS Data Collection, Content Analytics/OmniFind, Content Collector, and related IEHS-integrated co...
CVE-2013-2980
CVE-2013-2980 affects IBM Data Studio Web Console 3.1.0/3.1.1. A cross-site request forgery (CSRF) vulnerability arises from improper validation of browser request headers, allowing an authenticated user to be persuaded to visit a malicious site and cause access to sensitive monitored database in...
CVE-2013-2981
CVE-2013-2981 affects IBM Data Studio Web Console versions 3.1.0 and 3.1.1. A directory traversal vulnerability allows a remote attacker who has authenticated to the web application to read arbitrary files from the server filesystem. The root cause is improper validation of file paths in the Web ...