Microweber 1.1.18 is affected by broken authentication and session management. Local session hijacking may occur, which could result in unauthorized access to system data or functionality, or a complete system compromise.
References
Link | Resource |
---|---|
https://gist.github.com/virendratiwari03/9fdebe4d0b379d1996238b535add56d6 | Third Party Advisory |
Configurations
History
No history.
Information
Published : 2020-11-09 18:15
Updated : 2024-02-28 18:08
NVD link : CVE-2020-23139
Mitre link : CVE-2020-23139
CVE.ORG link : CVE-2020-23139
JSON object : View
Products Affected
microweber
- microweber
CWE
CWE-287
Improper Authentication