Vulnerabilities (CVE)

Filtered by vendor Redhat Subscribe
Filtered by product Analog Real-time Synthesizer
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2003-0459 2 Kde, Redhat 8 Konqueror, Konqueror Embedded, Analog Real-time Synthesizer and 5 more 2024-02-28 5.0 MEDIUM N/A
KDE Konqueror for KDE 3.1.2 and earlier does not remove authentication credentials from URLs of the "user:password@host" form in the HTTP-Referer header, which could allow remote web sites to steal the credentials for pages that link to the sites.