CVE-2014-125048 in xingwallИнформация

Сводка

по MITRE • 06.01.2023

A vulnerability, which was classified as critical, has been found in kassi xingwall. This issue affects some unknown processing of the file app/controllers/oauth.js. The manipulation leads to session fixiation. The name of the patch is e9f0d509e1408743048e29d9c099d36e0e1f6ae7. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-217559.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Ответственный

VulDB

Резервировать

06.01.2023

Раскрытие

06.01.2023

Модерация

принято

Вход

VDB-217559

CPE

готов

CWE

CWE-384 (Подтверждённый)

CVSS

5.4 (NVD)

EPSS

0.00229

KEV

Нет

Деятельности

Очень низкий

Источники

MITRE	https://www.cve.org/CVERecord?id=CVE-2014-125048
NVD	https://nvd.nist.gov/vuln/detail/CVE-2014-125048
CVE Details	https://www.cvedetails.com/cve/CVE-2014-125048/

◂ Предыдущий Обзор Далее ▸

Want to know what is going to be exploited?

We predict KEV entries!