Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site request forgery (CSRF) vulnerability in ClearQuest Web in IBM Rational ClearQuest 7.1.x before 7.1.2.17, 8.0.0.x before 8.0.0.14, and 8.0.1.x before 8.0.1.7 allows remote attackers to hijack the authentication of arbitrary users for requests that trigger a logout or insert XSS sequences.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Rational ClearQuest 跨站请求伪造漏洞
Vulnerability Description
IBM Rational ClearQuest是美国IBM公司的一套应用程序生命周期管理 (ALM) 软件。该软件为应用程序提供缺陷跟踪、流程定制、实时报告等,从而提高开发周期的可视性和可控性。 IBM Rational ClearQuest的ClearQuest Web中存在跨站请求伪造漏洞,该漏洞源于程序没有充分过滤用户提交的输入。远程攻击者可利用该漏洞注销用户,或插入XSS序列。以下版本受到影响:IBM Rational ClearQuest 7.1.2.17之前7.1.x版本,8.0.0.14之前
CVSS Information
N/A
Vulnerability Type
N/A