CVE-2023-6144

Name of the Vulnerable Software and Affected Versions Dev blog version 1.0

Description The issue allows for an account takeover through the user cookie, enabling an attacker to access any user's session by knowing their username.

Recommendations For Dev blog version 1.0, consider disabling the use of the user cookie until a patch is available to prevent account takeover. Restrict access to sensitive user data to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.