02 Juil 2016
CVE-2016-2863 Vulnerability
Cross-site request forgery (CSRF) vulnerability in IBM WebSphere Commerce 7.0 Feature Pack 8, 8.0.0.x before 8.0.0.10, and 8.0.1.x before 8.0.1.2 allows remote authenticated users to hijack the authentication of arbitrary users for requests that insert XSS sequences. (CVSS:6.0) (Last Update:2016-07-06)
Vulnerability Details : Cross-site request forgery (CSRF) vulnerability in IBM WebSphere Commerce 7.0 Feature Pack 8, 8.0.0.x before 8.0.0.10, and 8.0.1.x before 8.0.1.2 allows remote authenticated users to hijack the authentication of arbitrary users for requests that insert XSS sequences. Publish Date : 2016-07-03 Last Update Date : 2016-07-06 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2016-2863
- Number Of Affected Versions By Product
- References For CVE-2016-2863
| |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2016-2863There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |