CVE-2020-24570 in mymbCONNECT24
Resumen
por MITRE • 2020-10-04
An issue was discovered in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 through 2.6.1. There is a CSRF issue (with resultant SSRF) in the com_mb24proxy module, allowing attackers to steal session information from logged-in users with a crafted link.
If you want to get best quality of vulnerability data, you may have to visit VulDB.