PT-2023-11550 · Unknown · Westbrookadmin Portfoliocms

Yuzezheng416

Published

2023-01-31

Updated

2025-03-27

CVE-2020-20402

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Westbrookadmin portfolioCMS version 1.05

Description The issue allows attackers to bypass password validation and access sensitive information via session fixation.

Recommendations For Westbrookadmin portfolioCMS version 1.05, update to a version that fixes the session fixation issue to prevent attackers from bypassing password validation and accessing sensitive information.

Exploit

Fix

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-287

Related Identifiers

CVE-2020-20402

Affected Products

Westbrookadmin Portfoliocms

PT-2023-11550 · Unknown · Westbrookadmin Portfoliocms

CVE-2020-20402

Weakness Enumeration

Related Identifiers

Affected Products

References · 4