IDCVSSSummaryLast (major) updatePublished
CVE-2015-2858 7.5
Datalex airline booking software before 2015-09-03 allows remote attackers to read or write to arbitrary user data via a modified profileId parameter to (1) ValidateFormAction.do or (2) ProfileConfirmEditAddressAction.do. <a href="http://cwe.mitre.or
02-10-2015 - 20:05 02-10-2015 - 02:59
Back to Top Mark selected
Back to Top