The Authen::ExternalAuth extension prior to 0.11 for Best Practical Solutions RT allows remote malicious users to obtain a logged-in session via unspecified vectors related to the "URL of a RSS feed of the user."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mike_peachey authen\\ \\ |