Bradnitski

CVE-2024-23679 WRITEUP CRITICAL WRITEUP

Enonic XP < 7.7.4 - Unauthenticated Session Fixation

Enonic XP versions less than 7.7.4 are vulnerable to a session fixation issue. An remote and unauthenticated attacker can use prior sessions due to the lack of invalidating session attributes.

CVSS 9.8

View Code

CVE-2024-23679 WRITEUP CRITICAL WRITEUP

Enonic XP < 7.7.4 - Unauthenticated Session Fixation

Enonic XP versions less than 7.7.4 are vulnerable to a session fixation issue. An remote and unauthenticated attacker can use prior sessions due to the lack of invalidating session attributes.

CVSS 9.8

View Code

CVE-2024-23679 WRITEUP CRITICAL WRITEUP

Enonic XP < 7.7.4 - Unauthenticated Session Fixation

Enonic XP versions less than 7.7.4 are vulnerable to a session fixation issue. An remote and unauthenticated attacker can use prior sessions due to the lack of invalidating session attributes.

CVSS 9.8

View Code