IBM : Security Vulnerabilities, CVEs, Published In November 2010 (CSRF)
Cross-site request forgery (CSRF) vulnerability in ESAdmin/security.do in the administrator interface in IBM OmniFind Enterprise Edition before 9.1 allows remote attackers to hijack the authentication of administrators for requests that add an administrative user via a saveNewUser action.
Max CVSS
6.8
EPSS Score
0.50%
Published
2010-11-12
Updated
2018-10-10
Cross-site request forgery (CSRF) vulnerability in the Administrative Console in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.35 and 7.0 before 7.0.0.13 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
Max CVSS
6.0
EPSS Score
0.19%
Published
2010-11-09
Updated
2017-08-17
2 vulnerabilities found