Enviar #672589: code-projects Hospital Management System 1.0 Session Fixiationinformación

Título	code-projects Hospital Management System 1.0 Session Fixiation
Descripción	The Hospital Management System uses express-session for session management with a hardcoded and weak secret string ('secret'). The secret is used to sign session cookies, ensuring the integrity of session data. A weak or hardcoded secret allows attackers to forge session cookies, potentially bypassing authentication and impersonating other users. This vulnerability can lead to unauthorized access to sensitive patient records and administrative functions.
Fuente	⚠️ https://github.com/lakshayyverma/CVE-Discovery/blob/main/Hospital%20Management%20System.md
Usuario	lakshay12311 (UID 91298)
Sumisión	2025-10-10 08:47 (hace 8 meses)
Moderación	2025-10-10 15:59 (7 hours later)
Estado	Aceptado
Entrada de VulDB	327932 [code-projects Hospital Management System 1.0 express-session secret cifrado débil]
Puntos	20

Want to stay up to date on a daily basis?

Enable the mail alert feature now!