oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

CVE Request: Insecure Direct Object Reference in OSTicket attachments

From: Fábio Pires <mail () fabiopires pt>
Date: Tue, 19 Apr 2016 14:57:56 +0100
Hey guys,

Can you assign a CVE ID for this Insecure Direct Object Reference in
OSTicket attachments ?

https://labs.integrity.pt/advisories/insecure-direct-object-reference-in-osticket-attachments/

References:

    https://github.com/osTicket/osTicket-1.8/issues/2615
    https://github.com/osTicket/osTicket-1.8/pull/2618


Regards
-- 
-- 
*Fábio Pires*
*Country*: Portugal
*www.fabiopires.pt
<http://www.fabiopires.pt/>**<https://www.linkedin.com/in/fabiolspires>*
==
This email was signed automatically with PGP. If you want to exchange
encrypted messages, please search for my PGP key:
*Key*: 0x33524373

Attachment: signature.asc
Description: OpenPGP digital signature

Previous By Date Next
Previous By Thread Next

Current thread: