GHSA-v4mw-26wf-pfx6

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

A flaw, similar to to CVE-2016-9646, exists in ikiwiki before 3.20170111, in the passwordauth plugin's use of CGI::FormBuilder, allowing an attacker to bypass authentication via repeated parameters.

Ссылки

EPSS

Процентиль: 92%

0.07441

Низкий

9.8 Critical

CVSS3

CVE ID

CVE-2017-0356

Дефекты

CWE-287

Связанные уязвимости

CVE-2017-0356

CVSS3: 9.8

ubuntu

почти 8 лет назад

A flaw, similar to to CVE-2016-9646, exists in ikiwiki before 3.20170111, in the passwordauth plugin's use of CGI::FormBuilder, allowing an attacker to bypass authentication via repeated parameters.

CVE-2017-0356

CVSS3: 9.8

nvd

почти 8 лет назад

A flaw, similar to to CVE-2016-9646, exists in ikiwiki before 3.20170111, in the passwordauth plugin's use of CGI::FormBuilder, allowing an attacker to bypass authentication via repeated parameters.

CVE-2017-0356

CVSS3: 9.8

debian

почти 8 лет назад

A flaw, similar to to CVE-2016-9646, exists in ikiwiki before 3.201701 ...

EPSS

Процентиль: 92%

0.07441

Низкий

9.8 Critical

CVSS3

CVE ID

CVE-2017-0356

Дефекты

CWE-287