Cross-site request forgery (CSRF) vulnerability in IBM Cognos Express 9.0 before IFIX 2, 9.5 before IFIX 2, 10.1 before IFIX 2, and 10.2.1 before FP1 allows remote malicious users to hijack the authentication of arbitrary users.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm cognos express 10.1 |
||
ibm cognos express 9.0 |
||
ibm cognos express 9.5 |
||
ibm cognos express 10.2.1 |