phpCAS CAS Proxy Mode Cross-Site Scripting Vulnerability

Bugtraq ID: 42160
Class: Input Validation Error
CVE: CVE-2010-2796
Remote: Yes
Local: No
Published: Aug 03 2010 12:00AM
Updated: Apr 13 2015 10:14PM
Credit: Joachim Fritschi
Vulnerable: Jasig phpCAS 1.1.1
Jasig phpCAS 1.1 RC7
Jasig phpCAS 1.1
Debian Linux 5.0 sparc
Debian Linux 5.0 s/390
Debian Linux 5.0 powerpc
Debian Linux 5.0 mipsel
Debian Linux 5.0 mips
Debian Linux 5.0 m68k
Debian Linux 5.0 ia-64
Debian Linux 5.0 ia-32
Debian Linux 5.0 hppa
Debian Linux 5.0 armel
Debian Linux 5.0 arm
Debian Linux 5.0 amd64
Debian Linux 5.0 alpha
Debian Linux 5.0
Not Vulnerable: Jasig phpCAS 1.1.2


 

Privacy Statement
Copyright 2010, SecurityFocus