Authors: Created by IBM

IBM WebSphere Application Server is affected by a server-side request forgery vulnerability with the Ajax Proxy configured. CVEID:  CVE-2026-9006^[1]
DESCRIPTION:  IBM WebSphere Application Server is vulnerable to server-side request forgery (SSRF) with the Ajax Proxy configured.This may allow an attacker to send unauthorized requests from the system, resulting in a security bypass or information disclosure.
CWE:  CWE-918:Server-Side Request Forgery ...

Just published by IBM: Read more