Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2009-4353
HistoryDec 17, 2009 - 6:30 p.m.

Code injection

2009-12-1718:30:00
PRIOn knowledge base
www.prio-n.com
2

7.2 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

71.9%

JSON

The Mobile Edition of TransWARE Active! mail 2003 build 2003.0139.0871 and earlier, and possibly other versions before 2003.0139.0911, does not remove the session ID in a Referer URL, which allows remote attackers to hijack web sessions via vectors such as an email with an embedded URL.

CPENameOperatorVersion
active\\!_maille2003

Related

cve 1
jvn 1
cvelist 1
nvd 1
cve
cve
CVE-2009-4353
2009-12-17 18:30:00
jvn
jvn
JVN#85821104 Active! mail 2003 session ID disclosure vulnerability
2009-12-08 00:00:00
cvelist
cvelist
CVE-2009-4353
2009-12-17 18:00:00
nvd
nvd
CVE-2009-4353
2009-12-17 18:30:00

7.2 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

71.9%

JSON
Related for PRION:CVE-2009-4353
cve1jvn1cvelist1nvd1