CVE-2015-7407
EUVD-2015-733102.01.2016, 21:59
Cross-site request forgery (CSRF) vulnerability in Lotus Mashups in IBM Mashup Center 3.0.0.1 allows remote attackers to hijack the authentication of arbitrary users for requests that insert XSS sequences.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| ibm | mashups_center | 3.0.0.1 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References