PYSEC-2022-43004

See a problem?

Import Source

https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43004.yaml

JSON Data

https://api.osv.dev/v1/vulns/PYSEC-2022-43004

Aliases

Published

2022-12-22T02:15:00Z

Modified

2023-11-08T04:10:56.861760Z

Summary

[none]

Details

Cross-Site Request Forgery (CSRF) in GitHub repository ikus060/rdiffweb prior to 2.5.4.

References

Affected packages

PyPI / rdiffweb

Package

Name: rdiffweb; View open source insights on deps.dev
Purl: pkg:pypi/rdiffweb

Affected ranges

Type: GIT
Repo: https://github.com/ikus060/rdiffweb
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

e6f0d8002129be90fe82fa3e3ea0a6942caba398

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.5.4

Affected versions

0.*

0.9.2.dev1

0.9.3

0.9.4

0.9.5

0.10.0

0.10.2

0.10.3

0.10.4

0.10.5

0.10.6

0.10.7

0.10.8

0.10.9

1.*

1.0.0a1

1.0.0a2

1.0.0a3

1.0.0a4

1.0.0

1.0.1

1.0.2

1.0.3

1.1.0

1.2.0

1.2.1

1.2.2

1.3.0

1.3.1b1

1.3.1b2

1.3.1

1.3.2

1.4.0b1

1.4.0b2

1.4.0b3

1.4.0b4

1.4.0b5

1.4.0

1.4.1b1

1.4.1b2

1.4.1b3

1.5.0

1.5.1b1

1.5.1b2

1.6.0b1

2.*

2.0.1b2

2.0.1b3

2.0.2

2.0.3a1

2.0.3a2

2.0.3a3

2.0.3a4

2.0.3a5

2.0.3a6

2.0.3a7

2.1.0

2.2.0.dev1

2.2.0a1

2.2.0a2

2.2.0a3

2.2.0a4

2.2.0a5

2.2.0a6

2.2.0

2.2.1

2.3.0

2.3.1

2.3.2

2.3.3

2.3.4

2.3.5

2.3.6

2.3.7

2.3.8

2.3.9

2.4.0

2.4.1

2.4.2

2.4.3

2.4.4

2.4.5

2.4.6

2.4.7

2.4.8

2.4.9

2.4.10

2.4.11a1

2.4.11

2.5.0a7

2.5.0a8

2.5.0a9

2.5.0

2.5.1

2.5.2

2.5.3

2.5.4b1

Database specific

source

"https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-43004.yaml"