Description

nuSOAP before 0.7.3-5 does not properly check the hostname of a cert.

Remediation

References

CVE-2012-6071

Related Vulnerabilities

Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-8145)

WordPress Plugin WPeMatico RSS Feed Fetcher Cross-Site Scripting (2.3.7)

Apache Tomcat Insufficient Verification of Data Authenticity Vulnerability (CVE-2017-7674)

Magento Improper Authorization Vulnerability (CVE-2021-28563)

WordPress Plugin Easy Google Analytics for WordPress Cross-Site Request Forgery (1.6.0)

Severity

High

Classification

CVE-2012-6071 CWE-295

Tags

Missing Update Known Vulnerabilities