Lucene search

K
osvGoogleOSV:CVE-2018-8764
HistoryMar 27, 2018 - 4:29 p.m.

CVE-2018-8764

2018-03-2716:29:00
Google
osv.dev
6

AI Score

7.2

Confidence

Low

EPSS

0.005

Percentile

75.5%

Roland Gruber Softwareentwicklung LDAP Account Manager before 6.3 places a CSRF token in the sec_token parameter of a URI, which makes it easier for remote attackers to defeat a CSRF protection mechanism by leveraging logging.

AI Score

7.2

Confidence

Low

EPSS

0.005

Percentile

75.5%