Unrestricted Use of FRAME Elements Vulnerability

Unrestricted Use of FRAME Elements Vulnerability

CVE-2015-0127 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

IBM Leads 7.x, 8.1.0 before 8.1.0.14, 8.2, 8.5.0 before 8.5.0.7.3, 8.6.0 before 8.6.0.8.1, 9.0.0 through 9.0.0.4, 9.1.0 before 9.1.0.6.1, and 9.1.1 before 9.1.1.0.2 does not properly restrict use of FRAME elements, which allows remote authenticated users to conduct phishing attacks via a crafted web site.

Learn more about our Web App Pen Testing.