CVE-2012-4734

Source
https://nvd.nist.gov/vuln/detail/CVE-2012-4734
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2012-4734.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2012-4734
Downstream
Published
2012-11-11T13:00:59Z
Modified
2025-04-11T04:00:06Z
Summary
[none]
Details

Request Tracker (RT) 3.8.x before 3.8.15 and 4.0.x before 4.0.8 allows remote attackers to conduct a "confused deputy" attack to bypass the CSRF warning protection mechanism and cause victims to "modify arbitrary state" via unknown vectors related to a crafted link.

References

Affected packages