IBM WebSphere Portal 7.x up to and including 7.0.0.2 CF29, 8.0.x prior to 8.0.0.1 CF20, and 8.5.x prior to 8.5.0.0 CF09 uses weak permissions for content items, which allows remote authenticated users to make modifications via the authoring UI.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm websphere portal 7.0.0.1 |
||
ibm websphere portal 7.0.0.0 |
||
ibm websphere portal 8.0.0.1 |
||
ibm websphere portal 7.0.0.2 |
||
ibm websphere portal 8.5.0.0 |
||
ibm websphere portal 8.0.0.0 |