1 results (0.003 seconds)
CVSS: 5.0EPSS: 0%CPEs: 3EXPL: 0
CVSS: 5.0EPSS: 0%CPEs: 3EXPL: 0CVE-2012-2770
https://notcve.org/view.php?id=CVE-2012-2770
The Authen::ExternalAuth extension before 0.11 for Best Practical Solutions RT allows remote attackers to obtain a logged-in session via unspecified vectors related to the "URL of a RSS feed of the user." La extensión Authen::ExternalAuth anterior v0.11 para (Best Practical Solutions RT) permite a atacantes obtener una sesión con acceso a través de vectores no especificados relacionados con (URL of a RSS feed of the user). • http://lists.bestpractical.com/pipermail/rt-announce/2012-July/000208.html http://secunia.com/advisories/50060 http://www.securityfocus.com/bid/54681 https://exchange.xforce.ibmcloud.com/vulnerabilities/77213 • CWE-264: Permissions, Privileges, and Access Controls •