Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-q4wp-vrv8-q2xh

Опубликовано: 17 сент. 2022
Источник: github
Github: Не прошло ревью
CVSS3: 3.7

Описание

HotelDruid Hotel Management Software v3.0.3 and below was discovered to have exposed session tokens in multiple links via GET parameters, allowing attackers to access user session id's.

HotelDruid Hotel Management Software v3.0.3 and below was discovered to have exposed session tokens in multiple links via GET parameters, allowing attackers to access user session id's.

Ссылки

EPSS

Процентиль: 40%
0.00185
Низкий

3.7 Low

CVSS3

CVE ID

CVE-2021-42948

Дефекты

CWE-319

Связанные уязвимости

ubuntu логотип

CVE-2021-42948

CVSS3: 3.7
ubuntu
больше 3 лет назад

HotelDruid Hotel Management Software v3.0.3 and below was discovered to have exposed session tokens in multiple links via GET parameters, allowing attackers to access user session id's.

nvd логотип

CVE-2021-42948

CVSS3: 3.7
nvd
больше 3 лет назад

HotelDruid Hotel Management Software v3.0.3 and below was discovered to have exposed session tokens in multiple links via GET parameters, allowing attackers to access user session id's.

debian логотип

CVE-2021-42948

CVSS3: 3.7
debian
больше 3 лет назад

HotelDruid Hotel Management Software v3.0.3 and below was discovered t ...

EPSS

Процентиль: 40%
0.00185
Низкий

3.7 Low

CVSS3

CVE ID

CVE-2021-42948

Дефекты

CWE-319