Ldap Integration With Active Directory And Openldap Ntlm & Kerberos Login
Approved changes feed: RSS · Atom
cpe:2.3:a:miniorange:ldap_integration_with_active_directory_and_openldap_-_ntlm_&_kerberos_login:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Miniorange (30ca830e-0f9b-52a7-9359-14c31196f049) |
|---|---|
| Product | Ldap Integration With Active Directory And Openldap Ntlm & Kerberos Login (c40844a4-8f40-509c-b3a4-da5286cc58de) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2023-23749 |
vulnerable | 2026-06-03 14:49:28.591362 |
Extension - miniorange - LDAP Integration - LDAP Injection (username)
The 'LDAP Integration with Active Directory and OpenLDAP - NTLM & Kerberos Login' extension is vulnerable to LDAP Injection since is not properly sanitizing the 'username' POST parameter. An attacker can manipulate this paramter to dump arbitrary contents form the LDAP Database.
Published: 2023-01-17T19:38:22.103Z
Updated: 2025-04-04T04:36:21.675Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.