CVE-2016-0720

Cross-site request forgery (CSRF) vulnerability in pcsd web UI in pcs before 0.9.149.
Configurations

Configuration 1 (hide)

cpe:2.3:a:clusterlabs:pcs:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:o:fedoraproject:fedora:22:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:23:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*

History

21 Nov 2024, 02:42

Type Values Removed Values Added
References () http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178261.html - Third Party Advisory () http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178261.html - Third Party Advisory
References () http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178384.html - Third Party Advisory () http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178384.html - Third Party Advisory
References () http://rhn.redhat.com/errata/RHSA-2016-2596.html - Third Party Advisory () http://rhn.redhat.com/errata/RHSA-2016-2596.html - Third Party Advisory
References () http://www.securityfocus.com/bid/97984 - Third Party Advisory, VDB Entry () http://www.securityfocus.com/bid/97984 - Third Party Advisory, VDB Entry
References () https://bugzilla.redhat.com/show_bug.cgi?id=1299614 - Issue Tracking, Third Party Advisory () https://bugzilla.redhat.com/show_bug.cgi?id=1299614 - Issue Tracking, Third Party Advisory
References () https://github.com/ClusterLabs/pcs/commit/b9e7f061788c3b86a0c67d2d4158f067ec5eb625 - Issue Tracking, Patch () https://github.com/ClusterLabs/pcs/commit/b9e7f061788c3b86a0c67d2d4158f067ec5eb625 - Issue Tracking, Patch

Information

Published : 2017-04-21 15:59

Updated : 2024-11-21 02:42


NVD link : CVE-2016-0720

Mitre link : CVE-2016-0720

CVE.ORG link : CVE-2016-0720


JSON object : View

Products Affected

clusterlabs

  • pcs

redhat

  • enterprise_linux

fedoraproject

  • fedora
CWE
CWE-352

Cross-Site Request Forgery (CSRF)