← Back

Ldap Integration With Active Directory And Openldap

ldap_integration_with_active_directory_and_openldap

Vendor: Miniorange • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2023-23749
1Miniorange
1Ldap Integration With Active Directory And Openldap
Apr 3, 2025
Jan 17, 2023
N/A· v4
7.5 HIGH· v3
N/A· v2
The 'LDAP Integration with Active Directory and OpenLDAP - NTLM & Kerberos Login' extension is vulnerable to LDAP Injection since is not properly sanitizing the 'username' POST parameter. An attacker can manipulate this...Show more
The 'LDAP Integration with Active Directory and OpenLDAP - NTLM & Kerberos Login' extension is vulnerable to LDAP Injection since is not properly sanitizing the 'username' POST parameter. An attacker can manipulate this paramter to dump arbitrary contents form the LDAP Database.Show less