Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2020-23140
HistoryNov 09, 2020 - 5:03 p.m.

CVE-2020-23140

2020-11-0917:03:59
mitre
www.cve.org
3
microweber 1.1.18
insufficient session expiration
session expiration
password change
active session

AI Score

8.1

Confidence

High

EPSS

0.002

Percentile

51.5%

JSON

Microweber 1.1.18 is affected by insufficient session expiration. When changing passwords, both sessions for when a user changes email and old sessions in any other browser or device, the session does not expire and remains active.

Related

cve 1
nvd 1
prion 1
cve
cve
CVE-2020-23140
2020-11-09 18:15:12
nvd
nvd
CVE-2020-23140
2020-11-09 18:15:12
prion
prion
Session fixation
2020-11-09 18:15:00

AI Score

8.1

Confidence

High

EPSS

0.002

Percentile

51.5%

JSON
Related for CVELIST:CVE-2020-23140
cve1nvd1prion1