Lucene search
GoogleOSV:DLA-485-1HistoryMay 22, 2016 - 12:00 a.m.
extplorer - security update
2016-05-2200:00:00
Google
osv.dev
3
0.002 Low
EPSS
Percentile
52.2%
This security update fixes a security issue in extplorer. We recommend you
upgrade your extplorer package.
- CVE-2015-5660
Cross-site request forgery (CSRF) vulnerability allows remote
attackers to hijack the authentication of arbitrary users for
requests that execute PHP code.
Further information about Debian LTS security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: <https://wiki.debian.org/LTS>
For Debian 7 Wheezy, these issues have been fixed in extplorer version 2.1.0b6+dfsg.3-4+deb7u3
| CPE | Name | Operator | Version |
|---|---|---|---|
| extplorer | eq | 2.1.0b6+dfsg.3-4+deb7u1 | |
| extplorer | eq | 2.1.0b6+dfsg.3-4+deb7u2 | |
| extplorer | eq | 2.1.0b6+dfsg.3-4 |
References
Related
prion
prion
Cross site request forgery (csrf)
2015-10-16 01:59:00
nvd
nvd
CVE-2015-5660
2015-10-16 01:59:03
jvn
jvn
JVN#92520335: eXtplorer vulnerable to cross-site request forgery
2015-10-15 00:00:00
ubuntucve
ubuntucve
CVE-2015-5660
2015-10-16 00:00:00
cvelist
cvelist
CVE-2015-5660
2015-10-16 01:00:00
debian
debian
[SECURITY] [DLA 485-1] extplorer security update
2016-05-22 20:30:06
cve
cve
CVE-2015-5660
2015-10-16 01:59:03
nessus
nessus
Debian DLA-485-1 : extplorer security update
2016-05-23 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-485-1)
2023-03-08 00:00:00