CVE-2015-7294
CVE-2015-7294 affects ldapauth-fork before 2.3.3, where a remote attacker can trigger LDAP injection through a crafted username parameter. The vulnerability is linked to the ldapauth-fork library used for authenticating against LDAP servers. Several connected sources confirm the affected version ...