Unrated severityNVD Advisory· Published Aug 15, 2012· Updated Jun 16, 2026
CVE-2012-2770
CVE-2012-2770
Description
The Authen::ExternalAuth extension before 0.11 for Best Practical Solutions RT allows remote attackers to obtain a logged-in session via unspecified vectors related to the "URL of a RSS feed of the user."
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:mike_peachey:authen\:\:externalauth:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:mike_peachey:authen\:\:externalauth:*:*:*:*:*:*:*:*range: <=0.08
- cpe:2.3:a:mike_peachey:authen\:\:externalauth:0.05:*:*:*:*:*:*:*
- Range: <0.11
Patches
Vulnerability mechanics
References
4- lists.bestpractical.com/pipermail/rt-announce/2012-July/000208.htmlnvdPatchVendor Advisory
- secunia.com/advisories/50060nvdVendor Advisory
- www.securityfocus.com/bid/54681nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/77213nvd
News mentions
0No linked articles in our index yet.