CVE-2023-6144 in Dev Bloginformazioni

Riassunto

di MITRE • 21/11/2023

Dev blog v1.0 allows to exploit an account takeover through the "user" cookie. With this, an attacker can access any user's session just by knowing their username.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Responsabile

Fluid Attacks

Prenotare

14/11/2023

Divulgazione

21/11/2023

Moderazione

accettato

CPE

pronto

EPSS

0.00448

KEV

no

Attività

molto basso

Settore

Education

Fonti

Do you need the next level of professionalism?

Upgrade your account now!