1
Candidate: CVE-2010-3690
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3690
5
https://github.com/glpi-project/glpi/commit/5b1d4768334b4424882931ca5800258b8dc72479
7
Multiple cross-site scripting (XSS) vulnerabilities in phpCAS before 1.1.3,
8
when proxy mode is enabled, allow remote attackers to inject arbitrary web
9
script or HTML via (1) a crafted Proxy Granting Ticket IOU (PGTiou)
10
parameter to the callback function in client.php, (2) vectors involving
11
functions that make getCallbackURL calls, or (3) vectors involving
12
functions that make getURL calls.
15
sbeattie> fixed in php-cas 1.1.3
22
upstream_glpi: released (0.80)
24
hardy_glpi: ignored (reached end-of-life)
25
jaunty_glpi: ignored (reached end-of-life)
26
karmic_glpi: ignored (reached end-of-life)
27
lucid_glpi: ignored (reached end-of-life)
28
maverick_glpi: ignored (reached end-of-life)
29
natty_glpi: ignored (reached end-of-life)
30
oneiric_glpi: ignored (reached end-of-life)
31
precise_glpi: not-affected (0.80.7-1)
32
quantal_glpi: ignored (reached end-of-life)
33
raring_glpi: ignored (reached end-of-life)
34
saucy_glpi: ignored (reached end-of-life)
35
trusty_glpi: not-affected (0.80.7-1)
36
utopic_glpi: ignored (reached end-of-life)
37
vivid_glpi: ignored (reached end-of-life)
38
vivid/stable-phone-overlay_glpi: DNE
39
vivid/ubuntu-core_glpi: DNE
40
wily_glpi: ignored (reached end-of-life)
41
xenial_glpi: not-affected (0.80.7-1)
42
yakkety_glpi: not-affected (0.80.7-1)
46
upstream_moodle: needs-triage
47
dapper_moodle: ignored (reached end-of-life)
48
hardy_moodle: ignored (reached end-of-life)
49
jaunty_moodle: ignored (reached end-of-life)
50
karmic_moodle: ignored (reached end-of-life)
51
lucid_moodle: ignored (reached end-of-life)
52
maverick_moodle: ignored (reached end-of-life)
53
natty_moodle: ignored (reached end-of-life)
54
oneiric_moodle: ignored (reached end-of-life)
55
precise_moodle: not-affected (1.9.9.dfsg2-5)
56
quantal_moodle: not-affected (1.9.9.dfsg2-5)
57
raring_moodle: not-affected (1.9.9.dfsg2-5)
58
saucy_moodle: not-affected (1.9.9.dfsg2-5)
59
trusty_moodle: not-affected (1.9.9.dfsg2-5)
60
utopic_moodle: not-affected (1.9.9.dfsg2-5)
61
vivid_moodle: not-affected (1.9.9.dfsg2-5)
62
vivid/stable-phone-overlay_moodle: DNE
63
vivid/ubuntu-core_moodle: DNE
64
wily_moodle: not-affected (1.9.9.dfsg2-5)
65
xenial_moodle: not-affected (1.9.9.dfsg2-5)
66
yakkety_moodle: not-affected (1.9.9.dfsg2-5)
67
devel_moodle: not-affected (1.9.9.dfsg2-5)