Candidate: CVE-2012-6710
PublicDate: 2018-10-07 18:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6710
 http://itsecuritysolutions.org/2012-12-31-eXtplorer-v2.1-authentication-bypass-vulnerability
 http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-201212-371
Description:
 ext_find_user in eXtplorer through 2.1.2 allows remote attackers to bypass
 authentication via a password[]= (aka an empty array) in an action=login
 request to index.php.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H [9.8 CRITICAL]


Patches_extplorer:
upstream_extplorer: released (2.1.3)
precise/esm_extplorer: DNE
trusty_extplorer: ignored (reached end-of-life)
trusty/esm_extplorer: DNE (trusty was needed)
xenial_extplorer: ignored (end of standard support, was needed)
bionic_extplorer: DNE
cosmic_extplorer: DNE
disco_extplorer: DNE
eoan_extplorer: DNE
focal_extplorer: DNE
groovy_extplorer: DNE
hirsute_extplorer: DNE
impish_extplorer: DNE
jammy_extplorer: DNE
devel_extplorer: DNE