25 Jui 2016
CVE-2016-2901 Vulnerability
Cross-site request forgery (CSRF) vulnerability in the PA_Theme_Creator application in IBM WebSphere Portal 8.5 CF08 through CF10 and Web Content Manager allows remote attackers to hijack the authentication of arbitrary users for requests that insert XSS sequences. (CVSS:6.8) (Last Update:2016-08-18)
Vulnerability Details : Cross-site request forgery (CSRF) vulnerability in the PA_Theme_Creator application in IBM WebSphere Portal 8.5 CF08 through CF10 and Web Content Manager allows remote attackers to hijack the authentication of arbitrary users for requests that insert XSS sequences. Publish Date : 2016-06-25 Last Update Date : 2016-08-18 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2016-2901
- Number Of Affected Versions By Product
- References For CVE-2016-2901
| |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2016-2901There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |