CVE-2012-4002

Опубликовано: 09 окт. 2012

Источник: debian

Описание

Cross-site request forgery (CSRF) vulnerability in GLPI-PROJECT GLPI before 0.83.3 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
glpi	fixed	0.83.31-1		package

Примечания

Only supported behind an authenticated HTTP zone
https://forge.indepnet.net/projects/glpi/versions/771
https://www.openwall.com/lists/oss-security/2012/07/13/1

Связанные уязвимости

CVE-2012-4002

ubuntu

больше 13 лет назад

Cross-site request forgery (CSRF) vulnerability in GLPI-PROJECT GLPI before 0.83.3 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

CVE-2012-4002

nvd

больше 13 лет назад

Cross-site request forgery (CSRF) vulnerability in GLPI-PROJECT GLPI before 0.83.3 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

GHSA-rg9g-x558-44x8

github

больше 3 лет назад

Cross-site request forgery (CSRF) vulnerability in GLPI-PROJECT GLPI before 0.83.3 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.