Lucene search
GitHub_MCVELIST:CVE-2021-21376HistoryMar 23, 2021 - 3:25 p.m.
CVE-2021-21376 Information Exposure in OMERO.web
2021-03-2315:25:22
CWE-200
GitHub_M
raw.githubusercontent.com
1
OMERO.web is open source Django-based software for managing microscopy imaging. OMERO.web before version 5.9.0 loads various information about the current user such as their id, name and the groups they are in, and these are available on the main webclient pages. This represents an information exposure vulnerability. Some additional information being loaded is not used by the webclient and is being removed in this release. This is fixed in version 5.9.0.
Related
prion
prion
Information disclosure
2021-03-23 16:15:00
osv
osv
OMERO.web exposes some unnecessary session information in the page
2021-03-23 15:26:34
PYSEC-2021-31
2021-03-23 16:15:00
CVE-2021-21376
2021-03-23 16:15:14
cve
cve
CVE-2021-21376
2021-03-23 16:15:00
veracode
veracode
Information Disclosure
2021-03-24 02:59:44
github
github
OMERO.web exposes some unnecessary session information in the page
2021-03-23 15:26:34