exploitDog

GHSA-97p9-9xph-wfxf

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

webSPELL 4.0, and possibly later versions, allows remote attackers to bypass authentication via a ws_auth cookie, a different vulnerability than CVE-2006-4782.

webSPELL 4.0, and possibly later versions, allows remote attackers to bypass authentication via a ws_auth cookie, a different vulnerability than CVE-2006-4782.

Ссылки

EPSS

Процентиль: 78%

0.01115

Низкий

CVE ID

Дефекты

CWE-287

Связанные уязвимости

CVE-2007-1160

nvd

почти 19 лет назад

webSPELL 4.0, and possibly later versions, allows remote attackers to bypass authentication via a ws_auth cookie, a different vulnerability than CVE-2006-4782.

EPSS

Процентиль: 78%

0.01115

Низкий

CVE ID

Дефекты

CWE-287