CVE-2018-10966

Name of the Vulnerable Software and Affected Versions GamerPolls version 0.4.6

Description An issue was discovered related to the files config/environments/all.js and config/initializers/02 passport.js. An attacker can edit the Passport.js contents of the session cookie to contain the ID number of the account they wish to take over, and re-sign it using the hard-coded secret.

Recommendations For GamerPolls version 0.4.6, consider disabling the use of the hard-coded secret in config/environments/all.js and config/initializers/02 passport.js as a temporary workaround until a patch is available. Restrict access to editing the Passport.js contents of the session cookie to minimize the risk of exploitation.