Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CVE-2021-25966
HistoryOct 10, 2021 - 10:15 a.m.

CVE-2021-25966

2021-10-1010:15:07
Google
osv.dev
4
orchard core cms
vulnerability
session termination
password change
software

AI Score

7

Confidence

High

EPSS

0.001

Percentile

40.9%

JSON

In “Orchard core CMS” application, versions 1.0.0-beta1-3383 to 1.0.0 are vulnerable to an improper session termination after password change. When a password has been changed by the user or by an administrator, a user that was already logged in, will still have access to the application even after the password was changed.

Related

cvelist 1
nvd 1
cve 1
prion 1
cvelist
cvelist
CVE-2021-25966 Orchard Core CMS - Improper Session Termination after Password Change
2021-10-10 09:45:11
nvd
nvd
CVE-2021-25966
2021-10-10 10:15:07
cve
cve
CVE-2021-25966
2021-10-10 10:15:07
prion
prion
Session fixation
2021-10-10 10:15:00

AI Score

7

Confidence

High

EPSS

0.001

Percentile

40.9%

JSON
Related for OSV:CVE-2021-25966
cvelist1nvd1cve1prion1