Vulnerability Database
Blog
FAQ
Docs
CVE-2022-3232
See a problem?
Please try reporting it
to the source
first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2022-3232
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-3232.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2022-3232
Aliases
GHSA-cw2v-wv4g-w4p6
PYSEC-2022-281
Published
2022-09-17T20:15:09Z
Modified
2025-01-15T02:22:16.877067Z
Severity
4.3 (Medium)
CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
CVSS Calculator
Summary
[none]
Details
Cross-Site Request Forgery (CSRF) in GitHub repository ikus060/rdiffweb prior to 2.4.5.
References
https://huntr.dev/bounties/15c8fd98-7f50-4d46-b013-42710af1f99c
https://github.com/ikus060/rdiffweb/commit/422791ea45713aaaa865bdca74addb9fffd93a71
Affected packages
Git
/
github.com/ikus060/rdiffweb
Affected ranges
Type
GIT
Repo
https://github.com/ikus060/rdiffweb
Events
Introduced
0
Unknown introduced commit / All previous commits are affected
Fixed
422791ea45713aaaa865bdca74addb9fffd93a71
Fixed
422791ea45713aaaa865bdca74addb9fffd93a71
Affected versions
0.*
0.10.0
0.10.2
0.10.4
0.10.5
0.10.6
0.10.7
0.10.8
0.10.9
0.7.0
0.8.1
0.9.1
0.9.2
0.9.3
0.9.5
1.*
1.0.0
1.0.0a1
1.0.0a2
1.0.0a3
1.0.0a4
1.0.1
1.0.2
1.0.3
1.1.0
1.2.0
1.2.1
1.2.2
1.3.0
1.3.1
1.3.1b1
1.3.1b2
1.3.2
1.4.0
1.4.0b1
1.4.0b2
1.4.0b3
1.4.0b4
1.4.0b5
1.4.1b1
1.4.1b2
1.4.1b3
1.5.0
1.5.1b1
1.5.1b2
1.6.0b1
2.*
2.0.0
2.0.1
2.0.1b1
2.0.1b3
2.0.2
2.0.3a2
2.0.3a4
2.0.3a5
2.0.3a6
2.0.3a7
2.1.0
2.2.0.dev1
2.2.0a1
2.2.0a2
2.2.0a3
2.2.0a4
2.2.0a5
2.2.0a6
2.2.1
2.3.0
2.3.1
2.3.2
2.3.3
2.3.4
2.3.6
2.3.7
2.3.7rc1
2.3.8
2.3.9
2.3.9.rc1
2.3.9a1
2.3.9a2
2.4.0
2.4.0.a8
2.4.0a1
2.4.0a2
2.4.0a3
2.4.0a4
2.4.0a5
2.4.0a6
2.4.0a7
2.4.1
2.4.2
2.4.3
2.4.4
v0.*
v0.6.4
v0.6.5
v0.7.0
CVE-2022-3232 - OSV