CVE-2012-1840

CVE-2012-1840

EPSS 2.1%

AjaXplorer 3.2.x before 3.2.5 and 4.0.x before 4.0.4 does not properly perform cookie authentication, which allows remote attackers to obtain login access by leveraging knowledge of a password hash.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://ajaxplorer.info/ajaxplorer-4-0-4/https://exchange.xforce.ibmcloud.com/vulnerabilities/74305 http://www.kb.cert.org/vuls/id/504019