CVE-2016-15039

CVSS 3.1 Score 6.3 of 10 (medium)

Details

Published Jul 11, 2024
CWE ID 444

Summary

CVE-2016-15039 is a critical vulnerability affecting the mhuertos phpLDAPadmin software, specifically the makeHttpRequest function in htdocs/js/ajax_functions.js. The issue allows for http request smuggling, enabling remote attacks. The product does not use versioning, making it unclear which releases are affected or not. A patch, identified as dd6e9583a2eb2ca085583765e8a63df5904cb036, is recommended to mitigate this risk. Vulnerability details, including affected and unaffected releases, are not publicly available.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share