CVE-2012-4002

Priority
Medium
Description
Cross-site request forgery (CSRF) vulnerability in GLPI-PROJECT GLPI before
0.83.3 allows remote attackers to hijack the authentication of unspecified
victims via unknown vectors.
References
Package
Source: glpi (LP Ubuntu Debian)
Upstream:released (0.83.3)
Ubuntu 10.04 LTS (Lucid Lynx):ignored (reached end-of-life)
Ubuntu 12.04 LTS (Precise Pangolin):needed
Ubuntu 12.10 (Quantal Quetzal):not-affected (0.83.31-1)
Ubuntu 13.04 (Raring Ringtail):not-affected (0.83.31-1)
Ubuntu 13.10 (Saucy Salamander):not-affected (0.83.31-1)
Ubuntu 14.04 LTS (Trusty Tahr):not-affected (0.83.31-1)
More Information

Valid XHTML 1.0 Strict

Updated: 2013-12-20 21:15:16 UTC (commit 7585)