Cross-site request forgery (CSRF) vulnerability on the IBM WebSphere DataPower XC10 appliance 2.1 and 2.5 before FP4 allows remote authenticated users to hijack the authentication of arbitrary users for requests that insert XSS sequences.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: ibm
Published: 2014-12-11T16:00:00
Updated: 2017-08-28T12:57:01
Reserved: 2014-04-29T00:00:00
Link: CVE-2014-3058
JSON object: View
NVD Information
Status : Modified
Published: 2014-12-11T16:59:00.100
Modified: 2017-08-29T01:34:37.280
Link: CVE-2014-3058
JSON object: View
Redhat Information
No data.
CWE