← volver
CVE-2020-27742

CVE-2020-27742

EPSS 1.1%
An Insecure Direct Object Reference vulnerability in Citadel WebCit through 926 allows authenticated remote attackers to read someone else's emails via the msg_confirm_move template. NOTE: this was reported to the vendor in a publicly archived "Multiple Security Vulnerabilities in WebCit 926" thread.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://www.citadel.org/http://uncensored.citadel.org/readfwd?go=Citadel%20Security?start_reading_at=4592834