Описание
elog 3.1.1 allows remote attackers to post data as any username in the logbook.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| elog | fixed | 3.1.2-1-1 | package | |
| elog | fixed | 2.9.2+2014.05.11git44800a7-2+deb8u1 | jessie | package |
Примечания
https://bitbucket.org/ritt/elog/commits/2f6a300572bd6048351af8c45394ae62230c83d9
https://bitbucket.org/ritt/elog/commits/9ca611aca2b1860efac15f806bf907cc2e6f870a/
Связанные уязвимости
CVSS3: 7.5
ubuntu
больше 8 лет назад
elog 3.1.1 allows remote attackers to post data as any username in the logbook.
CVSS3: 7.5
nvd
больше 8 лет назад
elog 3.1.1 allows remote attackers to post data as any username in the logbook.
CVSS3: 7.5
github
больше 3 лет назад
elog 3.1.1 allows remote attackers to post data as any username in the logbook.