IBM Leads Multiple Versions Cross-Site Request Forgery (CSRF) Vulnerability

IBM Leads Multiple Versions Cross-Site Request Forgery (CSRF) Vulnerability

CVE-2015-0115 · MEDIUM Severity

AV:N/AC:M/AU:S/C:P/I:P/A:P

Cross-site request forgery (CSRF) vulnerability in IBM Leads 7.x, 8.1.0 before 8.1.0.14, 8.2, 8.5.0 before 8.5.0.7.3, 8.6.0 before 8.6.0.8.1, 9.0.0 through 9.0.0.4, 9.1.0 before 9.1.0.6.1, and 9.1.1 before 9.1.1.0.2 allows remote authenticated users to hijack the authentication of customer accounts.

Learn more about our Cis Benchmark Audit For Ibm I.