Vulnerability Database
Blog
FAQ
Docs
PYSEC-2022-281
Import Source
https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-281.yaml
Aliases
CVE-2022-3232
GHSA-cw2v-wv4g-w4p6
Published
2022-09-17T20:15:00Z
Modified
2023-11-08T04:09:36.207439Z
Details
Cross-Site Request Forgery (CSRF) in GitHub repository ikus060/rdiffweb prior to 2.4.5.
References
https://huntr.dev/bounties/15c8fd98-7f50-4d46-b013-42710af1f99c
https://github.com/ikus060/rdiffweb/commit/422791ea45713aaaa865bdca74addb9fffd93a71
Affected packages
PyPI
/
rdiffweb
Package
Name
rdiffweb
Affected ranges
Type
GIT
Repo
https://github.com/ikus060/rdiffweb
Events
Introduced
0
The exact introduced commit is unknown
Fixed
422791ea45713aaaa865bdca74addb9fffd93a71
Type
ECOSYSTEM
Events
Introduced
0
The exact introduced commit is unknown
Fixed
2.4.5
Affected versions
0.*
0.9.2.dev1
0.9.3
0.9.4
0.9.5
0.10.0
0.10.2
0.10.3
0.10.4
0.10.5
0.10.6
0.10.7
0.10.8
0.10.9
1.*
1.0.0a1
1.0.0a2
1.0.0a3
1.0.0a4
1.0.0
1.0.1
1.0.2
1.0.3
1.1.0
1.2.0
1.2.1
1.2.2
1.3.0
1.3.1b1
1.3.1b2
1.3.1
1.3.2
1.4.0b1
1.4.0b2
1.4.0b3
1.4.0b4
1.4.0b5
1.4.0
1.4.1b1
1.4.1b2
1.4.1b3
1.5.0
1.5.1b1
1.5.1b2
1.6.0b1
2.*
2.0.1b2
2.0.1b3
2.0.2
2.0.3a1
2.0.3a2
2.0.3a3
2.0.3a4
2.0.3a5
2.0.3a6
2.0.3a7
2.1.0
2.2.0.dev1
2.2.0a1
2.2.0a2
2.2.0a3
2.2.0a4
2.2.0a5
2.2.0a6
2.2.0
2.2.1
2.3.0
2.3.1
2.3.2
2.3.3
2.3.4
2.3.5
2.3.6
2.3.7
2.3.8
2.3.9
2.4.0
2.4.1
2.4.2
2.4.3
2.4.4
PYSEC-2022-281 - OSV