Lucene search
PRIOn knowledge basePRION:CVE-2018-8764HistoryMar 27, 2018 - 4:29 p.m.
Cross site request forgery (csrf)
2018-03-2716:29:00
PRIOn knowledge base
www.prio-n.com
6
Roland Gruber Softwareentwicklung LDAP Account Manager before 6.3 places a CSRF token in the sec_token parameter of a URI, which makes it easier for remote attackers to defeat a CSRF protection mechanism by leveraging logging.
| CPE | Name | Operator | Version |
|---|---|---|---|
| debian_linux | eq | 8.0 | |
| debian_linux | eq | 9.0 | |
| ldap_account_manager | lt | 6.3 |
Related
osv
osv
CVE-2018-8764
2018-03-27 16:29:00
cve
cve
CVE-2018-8764
2018-03-27 16:29:00
cvelist
cvelist
CVE-2018-8764
2018-03-27 16:00:00
nvd
nvd
CVE-2018-8764
2018-03-27 16:29:00
ubuntucve
ubuntucve
CVE-2018-8764
2018-03-27 00:00:00
debiancve
debiancve
CVE-2018-8764
2018-03-27 16:29:00
debian
debian
[SECURITY] [DSA 4165-1] ldap-account-manager security update
2018-04-04 01:42:29
[SECURITY] [DSA 4165-1] ldap-account-manager security update
2018-04-04 01:42:29
openvas
openvas
LDAP Account Manager < 6.3 Multiple Vulnerabilities
2018-03-26 00:00:00
Debian: Security Advisory (DSA-4165-1)
2018-04-02 00:00:00
packetstorm
packetstorm
LDAP Account Manager 6.2 Cross Site Scripting
2018-03-22 00:00:00
nessus
nessus
Debian DSA-4165-1 : ldap-account-manager - security update
2018-04-04 00:00:00