Mageia@4.0 Security Vulnerabilities and Issues — Mageia@4.0 CVE List

Lucene search

Mageia ProjectMageia4.0

3 matches found

CVE•added 2015/03/18 4:59 p.m.•148 views

CVE-2015-2296

The resolve_redirects function in sessions.py in requests 2.1.0 through 2.5.3 allows remote attackers to conduct session fixation attacks via a cookie without a host value in a redirect.

6.8CVSS5.7AI score0.01915EPSS

CVE•added 2014/10/22 2:55 p.m.•55 views

CVE-2014-8763

DokuWiki before 2014-05-05b, when using Active Directory for LDAP authentication, allows remote attackers to bypass authentication via a password starting with a null (\0) character and a valid user name, which triggers an unauthenticated bind.

5CVSS7.1AI score0.0105EPSS

CVE•added 2014/10/22 2:55 p.m.•55 views

CVE-2014-8764

DokuWiki 2014-05-05a and earlier, when using Active Directory for LDAP authentication, allows remote attackers to bypass authentication via a user name and password starting with a null (\0) character, which triggers an anonymous bind.

5CVSS6.9AI score0.01224EPSS