Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
IBM Leads 7.x, 8.1.0 before 8.1.0.14, 8.2, 8.5.0 before 8.5.0.7.3, 8.6.0 before 8.6.0.8.1, 9.0.0 through 9.0.0.4, 9.1.0 before 9.1.0.6.1, and 9.1.1 before 9.1.1.0.2 does not properly restrict the addition of links, which makes it easier for remote authenticated users to conduct cross-site request forgery (CSRF) attacks via unspecified vectors.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Leads 安全漏洞
Vulnerability Description
IBM Leads是美国IBM公司的一套用于改善客户管理流程的解决方案。该方案提供查找潜在客户、指派客户和发送新增客户信息通知等功能。 IBM Leads中存在安全漏洞,该漏洞源于程序没有正确限制链接的附加内容。远程攻击者可利用该漏洞实施跨站请求伪造攻击。以下版本受到影响:IBM Leads 7.x版本,8.1.0版本,8.2版本,8.5.0版本,8.6.0版本,9.0.0版本,9.1.0版本,9.1.1版本。
CVSS Information
N/A
Vulnerability Type
N/A