CVE-2012-4731

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2012-4731

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2012-4731.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2012-4731

Downstream

DEBIAN-CVE-2012-4731

DSA-2568-1

Published

2012-11-11T13:00:59Z

Modified

2025-04-11T04:00:22Z

Summary

[none]

Details

FAQ manager for Request Tracker (RTFM) before 2.4.5 does not properly check user rights, which allows remote authenticated users to create arbitrary articles in arbitrary classes via unknown vectors.

References

http://secunia.com/advisories/51062
http://secunia.com/advisories/51111
http://www.debian.org/security/2012/dsa-2568
http://lists.bestpractical.com/pipermail/rt-announce/2012-October/000212.html
http://lists.bestpractical.com/pipermail/rt-announce/2012-October/000215.html

CVE-2012-4731

Affected packages