Microweber 1.1.18 is affected by broken authentication and session management. Local session hijacking may occur, which could result in unauthorized access to system data or functionality, or a complete system compromise.
References
Link | Resource |
---|---|
https://gist.github.com/virendratiwari03/9fdebe4d0b379d1996238b535add56d6 | Third Party Advisory |
https://gist.github.com/virendratiwari03/9fdebe4d0b379d1996238b535add56d6 | Third Party Advisory |
Configurations
History
21 Nov 2024, 05:13
Type | Values Removed | Values Added |
---|---|---|
References | () https://gist.github.com/virendratiwari03/9fdebe4d0b379d1996238b535add56d6 - Third Party Advisory |
Information
Published : 2020-11-09 18:15
Updated : 2024-11-21 05:13
NVD link : CVE-2020-23139
Mitre link : CVE-2020-23139
CVE.ORG link : CVE-2020-23139
JSON object : View
Products Affected
microweber
- microweber
CWE
CWE-287
Improper Authentication