CVE-2020-13229

Published
View on NVD ↗
CVSS v3
8.8
HIGH
CVSS v2
6.8
MEDIUM
Affected
1
PROJECT

Description

An issue was discovered in Sysax Multi Server 6.90. A session can be hijacked if one observes the sid value in any /scgi URI, because it is an authentication token.

wrongsid3/Sysax-MultiServer-6.90-Multiple-Vulnerabilities
wrongsid3/Sysax-MultiServer-6.90-Multiple-Vulnerabilities
GitHubGitHub