CVE-2020-35132

Published: Dec 11, 2020

Modified: Aug 4, 2024

PUBLISHED

Description

An XSS issue has been discovered in phpLDAPadmin before 1.2.6.2 that allows users to store malicious values that may be executed by other users at a later time via get_request in lib/function.php.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://bugs.launchpad.net/ubuntu/+source/phpldapadmin/+bug/1906474

x_refsource_MISC

https://github.com/leenooks/phpLDAPadmin/commit/c87571f6b7be15d5cd8b26381b6eb31ad03d28e2

x_refsource_MISC

https://github.com/leenooks/phpLDAPadmin/issues/130

x_refsource_MISC

https://github.com/leenooks/phpLDAPadmin/compare/1.2.5...1.2.6.2

x_refsource_MISC

FEDORA-2020-6cc5654c0e

vendor-advisory

x_refsource_FEDORA

FEDORA-2020-c6fa47ecd7

vendor-advisory

x_refsource_FEDORA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2020-35132

Description

Affected Products

References