Phpcas@1.0.0 Security Vulnerabilities and Issues — Phpcas@1.0.0 CVE List

Lucene search

Joachim FritschiPhpcas1.0.0

2 matches found

CVE•added 2010/08/05 6:17 p.m.•39 views

CVE-2010-2795

phpCAS before 1.1.2 allows remote authenticated users to hijack sessions via a query string containing a crafted ticket value.

4CVSS5.9AI score0.00583EPSS

CVE•added 2010/08/05 6:17 p.m.•39 views

CVE-2010-2796

Cross-site scripting (XSS) vulnerability in phpCAS before 1.1.2, when proxy mode is enabled, allows remote attackers to inject arbitrary web script or HTML via a callback URL.

2.6CVSS5.4AI score0.00743EPSS