CVE-2023-50082

Name of the Vulnerable Software and Affected Versions Aoyun Technology pbootcms version 3.1.2

Description The issue allows remote attackers to gain sensitive information via session leakage, enabling a user to avoid logging into the backend management platform. This is due to incorrect access control.

Recommendations For Aoyun Technology pbootcms version 3.1.2, consider restricting access to sensitive information and session management functions to minimize the risk of exploitation. As a temporary workaround, review and strengthen the access control mechanisms to prevent unauthorized access to the backend management platform. At the moment, there is no information about a newer version that contains a fix for this vulnerability.