CVE-2012-5950 in TRIRIGA Application Platforminfo

Summary

Multiple cross-site request forgery (CSRF) vulnerabilities in IBM TRIRIGA Application Platform 2.x and 3.x before 3.3, and 8, allow remote attackers to hijack the authentication of arbitrary users for requests that modify data records via vectors involving (1) the html/en/default/ directory or (2) sqa/html/en/default/process/comm/saveProps.jsp.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

11/21/2012

Disclosure

04/23/2013

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-352 (Confirmed)

CVSS

6.3

EPSS

0.00103

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-5950
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-5950
CVE Details	https://www.cvedetails.com/cve/CVE-2012-5950/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!