CVE-2012-4732

EPSS 0.12%

發布日:2012/11/11修改日:2026/4/28

描述

Cross-site request forgery (CSRF) vulnerability in Request Tracker (RT) 3.8.12 and other versions before 3.8.15, and 4.0.6 and other versions before 4.0.8, allows remote attackers to hijack the authentication of users for requests that toggle ticket bookmarks.

受影響套件(1)

Debian/request-tracker4from 0, < 4.0.7-2

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2012-4732