Lucene search
Ubuntu.comUB:CVE-2011-2720HistoryAug 05, 2011 - 12:00 a.m.
CVE-2011-2720
2011-08-0500:00:00
ubuntu.com
ubuntu.com
11
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
EPSS
0.007
Percentile
80.4%
The autocompletion functionality in GLPI before 0.80.2 does not blacklist
certain username and password fields, which allows remote attackers to
obtain sensitive information via a crafted POST request.
Bugs
Related
openvas
openvas
FreeBSD Ports: glpi
2012-02-12 00:00:00
Mandriva Update for glpi MDVSA-2012:014 (glpi)
2012-02-13 00:00:00
Fedora Update for glpi FEDORA-2011-9639
2011-08-12 00:00:00
cvelist
cvelist
CVE-2011-2720
2011-08-05 21:00:00
fedora
fedora
[SECURITY] Fedora 14 Update: glpi-0.78.5-2.svn14966.fc14
2011-08-12 18:22:40
[SECURITY] Fedora 15 Update: glpi-0.78.5-2.svn14966.fc15
2011-08-03 22:56:47
[SECURITY] Fedora 14 Update: glpi-mass-ocs-import-1.4.2-1.fc14
2011-08-12 18:22:40
nessus
nessus
nvd
nvd
CVE-2011-2720
2011-08-05 21:55:06
prion
prion
Design/Logic Flaw
2011-08-05 21:55:00
freebsd
freebsd
glpi -- remote attack via crafted POST request
2011-07-20 00:00:00
cve
cve
CVE-2011-2720
2011-08-05 21:55:06
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
EPSS
0.007
Percentile
80.4%
Related for UB:CVE-2011-2720