CVE-2012-4734
- Source
- https://cve.org/CVERecord?id=CVE-2012-4734
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2012-4734.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2012-4734
- Downstream
- Withdrawn
- 2026-01-27T04:11:22.669972Z
- Published
- 2012-11-11T13:00:59Z
- Modified
- 2026-01-27T04:11:22.669972Z
- Summary
- [none]
- Details
-
Request Tracker (RT) 3.8.x before 3.8.15 and 4.0.x before 4.0.8 allows remote attackers to conduct a "confused deputy" attack to bypass the CSRF warning protection mechanism and cause victims to "modify arbitrary state" via unknown vectors related to a crafted link.
- References