exploitDog

GHSA-8v3r-gw3g-qx4m

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

An issue was discovered in TopManage OLK 2020. As there is no ReadOnly on the Session cookie, the user and admin accounts can be taken over in a DOM-Based XSS attack.

An issue was discovered in TopManage OLK 2020. As there is no ReadOnly on the Session cookie, the user and admin accounts can be taken over in a DOM-Based XSS attack.

Ссылки

EPSS

Процентиль: 46%

0.00234

Низкий

CVE ID

Связанные уязвимости

CVE-2020-6845

CVSS3: 6.1

nvd

почти 6 лет назад

An issue was discovered in TopManage OLK 2020. As there is no ReadOnly on the Session cookie, the user and admin accounts can be taken over in a DOM-Based XSS attack.

EPSS

Процентиль: 46%

0.00234

Низкий

CVE ID