Cross-site request forgery (CSRF) vulnerability in IBM WebSphere Commerce 7.0 Feature Pack 8, 8.0.0.x before 8.0.0.10, and 8.0.1.x before 8.0.1.2 allows remote authenticated users to hijack the authentication of arbitrary users for requests that insert XSS sequences.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: ibm
Published: 2016-07-03T21:00:00
Updated: 2017-08-31T09:57:01
Reserved: 2016-03-09T00:00:00
Link: CVE-2016-2863
JSON object: View
NVD Information
Status : Modified
Published: 2016-07-03T21:59:12.853
Modified: 2019-09-30T16:19:44.473
Link: CVE-2016-2863
JSON object: View
Redhat Information
No data.
CWE