2 matches found
CVE-2016-5889
IBM Interact versions 8.6, 9.0, 9.1, and 10.0 are reported vulnerable to Cross-Site Request Forgery (CSRF) that could enable an attacker to perform malicious and unauthorized actions transmitted from a trusted user. The vulnerability is described as CSRF in the IBM Interact product; no detailed r...
CVE-2016-5888
CVE-2016-5888 corresponds to an XSS vulnerability in IBM Interact Web UI. The affected products are IBM Interact 8.6, 9.0, 9.1, and 10.0. The vulnerability allows an attacker to embed arbitrary JavaScript in the Web UI, potentially altering functionality and leading to credential disclosure withi...