Vulnerabilities

CVE-2015-7465

by Fred · 09/01/2016

Cross-site request forgery (CSRF) vulnerability in Lifecycle Query Engine (LQE) in IBM Jazz Reporting Service (JRS) 6.0 before 6.0.0-Rational-CLM-ifix005 allows remote authenticated users to hijack the authentication of arbitrary users for requests that insert XSS sequences.

Date published : 2016-01-09

http://www-01.ibm.com/support/docview.wss?uid=swg21972484

Similar

Tags: Cybersecurity Alert