CVE-2016-15039

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2016-15039

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-15039.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2016-15039

Related

UBUNTU-CVE-2016-15039

Published

2024-07-11T03:15:02Z

Modified

2025-01-08T07:16:18Z

Summary

[none]

Details

A vulnerability classified as critical was found in mhuertos phpLDAPadmin up to 665dbc2690ebeb5392d38f1fece0a654225a0b38. Affected by this vulnerability is the function makeHttpRequest of the file htdocs/js/ajax_functions.js. The manipulation leads to http request smuggling. The attack can be launched remotely. This product does not use versioning. This is why information about affected and unaffected releases are unavailable. The patch is named dd6e9583a2eb2ca085583765e8a63df5904cb036. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-270523.

References

Affected packages

Debian:12 / phpldapadmin

Package

Name: phpldapadmin
Purl: pkg:deb/debian/phpldapadmin?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.2.6.3-0.1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / phpldapadmin

Package

Name: phpldapadmin
Purl: pkg:deb/debian/phpldapadmin?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.2.6.3-0.1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Git / github.com/mhuertos/phpldapadmin

Affected ranges

Type: GIT
Repo: https://github.com/mhuertos/phpldapadmin
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

dd6e9583a2eb2ca085583765e8a63df5904cb036

Fixed

dd6e9583a2eb2ca085583765e8a63df5904cb036