Lucene search
MitreCVELIST:CVE-2013-3370HistoryOct 03, 2022 - 4:14 p.m.
CVE-2013-3370
2022-10-0316:14:44
mitre
www.cve.org
2
request tracker
access restriction
vulnerability
remote attackers
Request Tracker (RT) 3.8.x before 3.8.17 and 4.0.x before 4.0.13 does not properly restrict access to private callback components, which allows remote attackers to have an unspecified impact via a direct request.
References
lists.bestpractical.com/pipermail/rt-announce/2013-May/000226.html
lists.bestpractical.com/pipermail/rt-announce/2013-May/000227.html
lists.bestpractical.com/pipermail/rt-announce/2013-May/000228.html
secunia.com/advisories/53505
secunia.com/advisories/53522
www.debian.org/security/2012/dsa-2670
www.osvdb.org/93609
Related
cve
cve
CVE-2013-3370
2022-10-03 16:14:44
prion
prion
Cross site request forgery (csrf)
2013-08-23 16:55:00
debiancve
debiancve
CVE-2013-3370
2022-10-03 16:14:44
ubuntucve
ubuntucve
CVE-2013-3370
2013-08-23 00:00:00
nvd
nvd
CVE-2013-3370
2013-08-23 16:55:07
openvas
openvas
Debian Security Advisory DSA 2670-1 (request-tracker3.8 - several vulnerabilities)
2013-05-22 00:00:00
Debian: Security Advisory (DSA-2670-1)
2013-05-21 00:00:00
debian
debian
[SECURITY] [DSA 2670-1] request-tracker3.8 security update
2013-05-22 19:11:30
[SECURITY] [DSA 2670-1] request-tracker3.8 security update
2013-05-22 19:11:30
[SECURITY] [DSA 2671-1] request-tracker4 security update
2013-05-22 19:45:55
nessus
nessus
Debian DSA-2670-1 : request-tracker3.8 - several vulnerabilities
2013-05-23 00:00:00
RT: Request Tracker < 3.8.17 / 4.0.13 Multiple Vulnerabilities
2013-05-24 00:00:00
Debian DSA-2671-1 : request-tracker4 - several vulnerabilities
2013-05-23 00:00:00
osv
osv
request-tracker3.8 - several
2013-05-22 00:00:00
request-tracker4 - several
2013-05-22 00:00:00
freebsd
freebsd
RT -- multiple vulnerabilities
2013-05-22 00:00:00
mageia
mageia
Updated rt/perl-Encode packages fix security vulnerability
2017-09-03 17:31:33