Количество 2
Количество 2
CVE-2022-43687
около 3 лет назад
Concrete CMS (formerly concrete5) below 8.5.10 and between 9.0.0 and 9.1.2 does not issue a new session ID upon successful OAuth authentication. Remediate by updating to Concrete CMS 9.1.3+ or 8.5.10+.
CVSS3: 5.4
EPSS: Низкий
GHSA-m53v-5x5x-5m2p
около 3 лет назад
Concrete CMS vulnerable to Session Fixation
CVSS3: 5.4
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-43687 Concrete CMS (formerly concrete5) below 8.5.10 and between 9.0.0 and 9.1.2 does not issue a new session ID upon successful OAuth authentication. Remediate by updating to Concrete CMS 9.1.3+ or 8.5.10+. | CVSS3: 5.4 | 0% Низкий | около 3 лет назад |
| GHSA-m53v-5x5x-5m2p Concrete CMS vulnerable to Session Fixation | CVSS3: 5.4 | 0% Низкий | около 3 лет назад |
Уязвимостей на страницу
20