A session fixation vulnerability in ... CVE-2019-10371

5.0 AV AC AU C I A
发布: 2019-08-07
修订: 2019-09-10

A session fixation vulnerability in Jenkins Gitlab Authentication Plugin 1.4 and earlier in GitLabSecurityRealm.java allows unauthorized attackers to impersonate another user if they can control the pre-authentication session.

0%
暂无可用Exp或PoC
当前有1条受影响产品信息