Unrated severityNVD Advisory· Published Mar 13, 2015· Updated Jun 17, 2026
CVE-2014-6214
CVE-2014-6214
Description
Cross-site request forgery (CSRF) vulnerability in IBM WebSphere Portal 8.0.0 through 8.0.0.1 CF15 and 8.5.0 before CF05 allows remote attackers to hijack the authentication of arbitrary users for requests that insert XSS sequences.
Affected products
4cpe:2.3:a:ibm:websphere_portal:8.0.0.0:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:ibm:websphere_portal:8.0.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_portal:8.0.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_portal:8.5.0.0:*:*:*:*:*:*:*
- (no CPE)range: 8.0.0 through 8.0.0.1 CF15 and 8.5.0 before CF05
Patches
Vulnerability mechanics
References
3- www-01.ibm.com/support/docview.wssnvdPatchVendor Advisory
- www-01.ibm.com/support/docview.wssnvd
- www.securitytracker.com/id/1031880nvd
News mentions
0No linked articles in our index yet.