Vulnerability Database
Blog
FAQ
Docs
PYSEC-2022-285
Import Source
https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-285.yaml
Aliases
CVE-2022-3233
GHSA-9vxf-mcm6-5m42
Published
2022-09-21T20:15:00Z
Modified
2023-11-08T04:09:36.265817Z
Details
Cross-Site Request Forgery (CSRF) in GitHub repository ikus060/rdiffweb prior to 2.4.6.
References
https://huntr.dev/bounties/5ec206e0-eca0-4957-9af4-fdd9185d1db3
https://github.com/ikus060/rdiffweb/commit/18a5aabd48fa6d2d2771a25f95610c28a1a097ca
Affected packages
PyPI
/
rdiffweb
Package
Name
rdiffweb
Affected ranges
Type
GIT
Repo
https://github.com/ikus060/rdiffweb
Events
Introduced
0
The exact introduced commit is unknown
Fixed
18a5aabd48fa6d2d2771a25f95610c28a1a097ca
Type
ECOSYSTEM
Events
Introduced
0
The exact introduced commit is unknown
Fixed
2.4.6
Affected versions
0.*
0.9.2.dev1
0.9.3
0.9.4
0.9.5
0.10.0
0.10.2
0.10.3
0.10.4
0.10.5
0.10.6
0.10.7
0.10.8
0.10.9
1.*
1.0.0a1
1.0.0a2
1.0.0a3
1.0.0a4
1.0.0
1.0.1
1.0.2
1.0.3
1.1.0
1.2.0
1.2.1
1.2.2
1.3.0
1.3.1b1
1.3.1b2
1.3.1
1.3.2
1.4.0b1
1.4.0b2
1.4.0b3
1.4.0b4
1.4.0b5
1.4.0
1.4.1b1
1.4.1b2
1.4.1b3
1.5.0
1.5.1b1
1.5.1b2
1.6.0b1
2.*
2.0.1b2
2.0.1b3
2.0.2
2.0.3a1
2.0.3a2
2.0.3a3
2.0.3a4
2.0.3a5
2.0.3a6
2.0.3a7
2.1.0
2.2.0.dev1
2.2.0a1
2.2.0a2
2.2.0a3
2.2.0a4
2.2.0a5
2.2.0a6
2.2.0
2.2.1
2.3.0
2.3.1
2.3.2
2.3.3
2.3.4
2.3.5
2.3.6
2.3.7
2.3.8
2.3.9
2.4.0
2.4.1
2.4.2
2.4.3
2.4.4
2.4.5
PYSEC-2022-285 - OSV