CVE-2021-25992

CVE-2021-25992

In Ifme, versions 1.0.0 to v.7.33.2 don’t properly invalidate a user’s session even after the user initiated logout. It makes it possible for an attacker to reuse the admin cookies either via local/network access or by other hypothetical attacks.

Source: CVE-2021-25992

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다