Vulnerabilities (CVE)

Filtered by vendor Pancakeapp Subscribe
Filtered by product Pancake
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-24876 1 Pancakeapp 1 Pancake 2024-11-21 5.0 MEDIUM 9.8 CRITICAL
Use of a hard-coded cryptographic key in Pancake versions < 4.13.29 allows an attacker to forge session cookies, which may lead to remote privilege escalation.