CVE-2013-2974 in Tivoli Application Dependency Discovery Manager
Résumé
par MITRE
The BIRT viewer in IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.2.1.x before 7.2.1.5 allows remote authenticated users to bypass authorization checks and obtain report-administration privileges, and consequently create or delete reports or conduct SQL injection attacks, via crafted parameters to the BIRT reporting URL.
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.