CVE-2012-4732

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2012-4732

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2012-4732.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2012-4732

Downstream

DEBIAN-CVE-2012-4732

DSA-2567-1

Published

2012-11-11T13:00:59Z

Modified

2025-04-11T04:00:07Z

Summary

[none]

Details

Cross-site request forgery (CSRF) vulnerability in Request Tracker (RT) 3.8.12 and other versions before 3.8.15, and 4.0.6 and other versions before 4.0.8, allows remote attackers to hijack the authentication of users for requests that toggle ticket bookmarks.

References

http://lists.bestpractical.com/pipermail/rt-announce/2012-October/000212.html
http://osvdb.org/86714

CVE-2012-4732

Affected packages