Описание
PunBB uses a predictable cookie_seed value that can be derived from the time of registration of the superadmin account (installation time), which might allow local users to perform unauthorized actions.
Ссылки
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:punbb:punbb:1.2.14:*:*:*:*:*:*:*
EPSS
Процентиль: 37%
0.00161
Низкий
7.2 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
PunBB uses a predictable cookie_seed value that can be derived from the time of registration of the superadmin account (installation time), which might allow local users to perform unauthorized actions.
EPSS
Процентиль: 37%
0.00161
Низкий
7.2 High
CVSS2
Дефекты
NVD-CWE-Other