PT-2023-11550 · Unknown · Westbrookadmin Portfoliocms
Yuzezheng416
·
Publicado
2023-01-31
·
Atualizado
2025-03-27
·
CVE-2020-20402
CVSS v3.1
7.5
Alta
| Vetor | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Westbrookadmin portfolioCMS version 1.05
Description
The issue allows attackers to bypass password validation and access sensitive information via session fixation.
Recommendations
For Westbrookadmin portfolioCMS version 1.05, update to a version that fixes the session fixation issue to prevent attackers from bypassing password validation and accessing sensitive information.
Exploit
Correção
Improper Authentication
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Westbrookadmin Portfoliocms