Описание
ipl/web is a set of common web components for php projects. Some of the recent development by Icinga is, under certain circumstances, susceptible to cross site request forgery. (CSRF). All affected products, in any version, will be unaffected by this once icinga-php-library is upgraded. Version 0.10.1 includes a fix for this. It will be published as part of the icinga-php-library v0.14.1 release.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | |
| esm-apps/jammy | needs-triage | |
| esm-apps/noble | needs-triage | |
| esm-infra/focal | DNE | |
| focal | DNE | |
| jammy | needs-triage | |
| noble | needs-triage | |
| oracular | not-affected | 0.14.1-1 |
| plucky | not-affected | |
| questing | not-affected |
Показывать по
Ссылки на источники
EPSS
3.9 Low
CVSS3
Связанные уязвимости
ipl/web is a set of common web components for php projects. Some of the recent development by Icinga is, under certain circumstances, susceptible to cross site request forgery. (CSRF). All affected products, in any version, will be unaffected by this once `icinga-php-library` is upgraded. Version 0.10.1 includes a fix for this. It will be published as part of the `icinga-php-library` v0.14.1 release.
ipl/web is a set of common web components for php projects. Some of th ...
ipl/web's `ipl\Web\Common\CsrfCounterMeasure` is susceptible to CSRF
EPSS
3.9 Low
CVSS3