Skip to main content

Ldap Account Manager

10 CVEs product

Monthly

CVE-2024-23333 MEDIUM This Month

LDAP Account Manager (LAM) is a webfrontend for managing entries stored in an LDAP directory. Rated medium severity (CVSS 6.6), this vulnerability is remotely exploitable. No vendor patch available.

RCE PHP Ldap Account Manager
NVD GitHub
CVSS 3.1
6.6
EPSS
17.9%
CVE-2022-31088 MEDIUM PATCH This Month

LDAP Account Manager (LAM) is a webfrontend for managing entries (e.g. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Ldap Account Manager Debian Linux
NVD GitHub
CVSS 3.1
5.3
EPSS
1.2%
CVE-2022-31087 HIGH PATCH This Week

LDAP Account Manager (LAM) is a webfrontend for managing entries (e.g. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

PHP RCE Ldap Account Manager Debian Linux
NVD GitHub
CVSS 3.1
7.8
EPSS
0.4%
CVE-2022-31086 HIGH PATCH This Week

LDAP Account Manager (LAM) is a webfrontend for managing entries (e.g. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

PHP RCE Ldap Account Manager Debian Linux
NVD GitHub
CVSS 3.1
8.8
EPSS
2.1%
CVE-2022-31085 MEDIUM PATCH This Month

LDAP Account Manager (LAM) is a webfrontend for managing entries (e.g. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

PHP OpenSSL Information Disclosure Ldap Account Manager Debian Linux
NVD GitHub
CVSS 3.1
6.1
EPSS
0.3%
CVE-2022-31084 HIGH POC PATCH This Week

LDAP Account Manager (LAM) is a webfrontend for managing entries (e.g. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available.

RCE Ldap Account Manager Debian Linux
NVD GitHub
CVSS 3.1
8.1
EPSS
2.3%
CVE-2022-24851 MEDIUM POC PATCH This Month

LDAP Account Manager (LAM) is an open source web frontend for managing entries stored in an LDAP directory. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

XSS Path Traversal Ldap Account Manager Debian Linux
NVD GitHub
CVSS 3.1
4.8
EPSS
1.1%
CVE-2018-8764 HIGH POC This Week

Roland Gruber Softwareentwicklung LDAP Account Manager before 6.3 places a CSRF token in the sec_token parameter of a URI, which makes it easier for remote attackers to defeat a CSRF protection. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Debian Linux Ldap Account Manager
NVD
CVSS 3.0
8.8
EPSS
1.3%
CVE-2018-8763 MEDIUM POC This Month

Roland Gruber Softwareentwicklung LDAP Account Manager before 6.3 has XSS via the dn parameter to the templates/3rdParty/pla/htdocs/cmd.php URI or the template parameter to the. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Debian Linux Ldap Account Manager
NVD
CVSS 3.0
6.1
EPSS
1.6%
CVE-2013-4453 MEDIUM PATCH This Month

Cross-site scripting (XSS) vulnerability in templates/login.php in LDAP Account Manager (LAM) 4.3 and 4.2.1 allows remote attackers to inject arbitrary web script or HTML via the language parameter. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

PHP XSS Ldap Account Manager
NVD
CVSS 2.0
4.3
EPSS
0.5%
EPSS 18% CVSS 6.6
MEDIUM This Month

LDAP Account Manager (LAM) is a webfrontend for managing entries stored in an LDAP directory. Rated medium severity (CVSS 6.6), this vulnerability is remotely exploitable. No vendor patch available.

RCE PHP Ldap Account Manager
NVD GitHub
EPSS 1% CVSS 5.3
MEDIUM PATCH This Month

LDAP Account Manager (LAM) is a webfrontend for managing entries (e.g. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Ldap Account Manager Debian Linux
NVD GitHub
EPSS 0% CVSS 7.8
HIGH PATCH This Week

LDAP Account Manager (LAM) is a webfrontend for managing entries (e.g. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

PHP RCE Ldap Account Manager +1
NVD GitHub
EPSS 2% CVSS 8.8
HIGH PATCH This Week

LDAP Account Manager (LAM) is a webfrontend for managing entries (e.g. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

PHP RCE Ldap Account Manager +1
NVD GitHub
EPSS 0% CVSS 6.1
MEDIUM PATCH This Month

LDAP Account Manager (LAM) is a webfrontend for managing entries (e.g. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

PHP OpenSSL Information Disclosure +2
NVD GitHub
EPSS 2% CVSS 8.1
HIGH POC PATCH This Week

LDAP Account Manager (LAM) is a webfrontend for managing entries (e.g. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available.

RCE Ldap Account Manager Debian Linux
NVD GitHub
EPSS 1% CVSS 4.8
MEDIUM POC PATCH This Month

LDAP Account Manager (LAM) is an open source web frontend for managing entries stored in an LDAP directory. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

XSS Path Traversal Ldap Account Manager +1
NVD GitHub
EPSS 1% CVSS 8.8
HIGH POC This Week

Roland Gruber Softwareentwicklung LDAP Account Manager before 6.3 places a CSRF token in the sec_token parameter of a URI, which makes it easier for remote attackers to defeat a CSRF protection. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Debian Linux Ldap Account Manager
NVD
EPSS 2% CVSS 6.1
MEDIUM POC This Month

Roland Gruber Softwareentwicklung LDAP Account Manager before 6.3 has XSS via the dn parameter to the templates/3rdParty/pla/htdocs/cmd.php URI or the template parameter to the. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Debian Linux +1
NVD
EPSS 0% CVSS 4.3
MEDIUM PATCH This Month

Cross-site scripting (XSS) vulnerability in templates/login.php in LDAP Account Manager (LAM) 4.3 and 4.2.1 allows remote attackers to inject arbitrary web script or HTML via the language parameter. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

PHP XSS Ldap Account Manager
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy