Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Lemonldap\:\:ng_handler
(Lemonldap\-Ng)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 1 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2020-09-14 | CVE-2020-24660 | An issue was discovered in LemonLDAP::NG through 2.0.8, when NGINX is used. An attacker may bypass URL-based access control to protected Virtual Hosts by submitting a non-normalized URI. This also affects versions before 0.5.2 of the "Lemonldap::NG handler for Node.js" package. | Debian_linux, Lemonldap\:\:ng, Lemonldap\:\:ng_handler | 9.8 |