EPSS
Percentile
61.7%
Cleartext SessionID is visible in URL query parameters under some conditions. (CVE-2016-3686) Impact There is a theoretical risk that a user could obtain unauthorized access to the system, causing a security breach.