Candidate: CVE-2012-3362
PublicDate: 2012-07-12 20:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3362
Description:
 Cross-site request forgery (CSRF) vulnerability in eXtplorer 2.1 RC3 and
 earlier allows remote attackers to hijack the authentication of
 administrators for requests that add an administrator account via an
 adduser admin action.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_extplorer:
 vendor: http://www.debian.org/security/2012/dsa-2510
upstream_extplorer: released (2.1.0b6+dfsg.3-3)
hardy_extplorer: DNE
lucid_extplorer: DNE
natty_extplorer: released (2.1.0b6+dfsg.2-1+squeeze1build0.11.04.1)
oneiric_extplorer: ignored (reached end-of-life)
precise_extplorer: ignored (reached end-of-life)
precise/esm_extplorer: DNE (precise was needed)
quantal_extplorer: not-affected (2.1.0b6+dfsg.3-3)
raring_extplorer: not-affected (2.1.0b6+dfsg.3-3)
saucy_extplorer: not-affected (2.1.0b6+dfsg.3-3)
trusty_extplorer: not-affected (2.1.0b6+dfsg.3-3)
trusty/esm_extplorer: DNE (trusty was not-affected [2.1.0b6+dfsg.3-3])
utopic_extplorer: not-affected (2.1.0b6+dfsg.3-3)
vivid_extplorer: not-affected (2.1.0b6+dfsg.3-3)
vivid/stable-phone-overlay_extplorer: DNE
vivid/ubuntu-core_extplorer: DNE
wily_extplorer: not-affected (2.1.0b6+dfsg.3-3)
xenial_extplorer: not-affected (2.1.0b6+dfsg.3-3)
yakkety_extplorer: DNE
zesty_extplorer: DNE
devel_extplorer: DNE