CVE-2015-10129

CVSS 3.1 Score 5.9 of 10 (medium)

Details

Published Feb 4, 2024
Updated: Jun 26, 2024
CWE ID 697

Summary

CVE-2015-10129 is a vulnerability identified in planet-freo versions up to 20150116. It affects an unknown functionality in auth.inc.php, allowing an incorrect comparison to occur when manipulating the argument 'auth'. This issue can be exploited remotely with a high level of complexity and difficulty. A public exploit is available, making it a significant security risk. As planet-freo uses a rolling release model, no specific version details have been provided for the affected or updated releases. To mitigate this issue, it is recommended to apply the patch with the identifier 6ad38c58a45642eb8c7844e2f272ef199f59550d.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share