CVE-2024-41290

Name of the Vulnerable Software and Affected Versions FlatPress CMS versions 1.3 through 1.3.1

Description The issue concerns the use of insecure methods to store authentication data via the cookie's component.

Recommendations For FlatPress CMS versions 1.3 through 1.3.1, consider updating the authentication mechanism to securely store and handle authentication data. As a temporary workaround, restrict access to sensitive areas of the application to minimize the risk of exploitation. Avoid using insecure cookie components until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.