exploitDog

GHSA-69h3-h3hv-hxp9

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

clonos.php in ClonOS WEB control panel 19.09 allows remote attackers to gain full access via change password requests because there is no session management.

clonos.php in ClonOS WEB control panel 19.09 allows remote attackers to gain full access via change password requests because there is no session management.

Ссылки

EPSS

Процентиль: 93%

0.1056

Средний

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-384

Связанные уязвимости

CVE-2019-18418

CVSS3: 9.8

nvd

больше 6 лет назад

clonos.php in ClonOS WEB control panel 19.09 allows remote attackers to gain full access via change password requests because there is no session management.

EPSS

Процентиль: 93%

0.1056

Средний

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-384