CVE-2008-4689

Опубликовано: 22 окт. 2008

Источник: debian

EPSS Низкий

Описание

Mantis before 1.1.3 does not unset the session cookie during logout, which makes it easier for remote attackers to hijack sessions.

Пакет	Статус	Версия исправления	Релиз	Тип
mantis	fixed	1.1.2+dfsg-9		package

EPSS

Процентиль: 77%

0.01112

Низкий

CVE-2008-4689

ubuntu

почти 17 лет назад

Mantis before 1.1.3 does not unset the session cookie during logout, which makes it easier for remote attackers to hijack sessions.

CVE-2008-4689

redhat

почти 17 лет назад

Mantis before 1.1.3 does not unset the session cookie during logout, which makes it easier for remote attackers to hijack sessions.

CVE-2008-4689

nvd

почти 17 лет назад

Mantis before 1.1.3 does not unset the session cookie during logout, which makes it easier for remote attackers to hijack sessions.

GHSA-g5wc-m94r-q66m

github

больше 3 лет назад

Mantis before 1.1.3 does not unset the session cookie during logout, which makes it easier for remote attackers to hijack sessions.

EPSS

Процентиль: 77%

0.01112

Низкий