Lucene search
PRIOn knowledge basePRION:CVE-2016-6545HistoryJul 13, 2018 - 8:29 p.m.
Design/Logic Flaw
2018-07-1320:29:00
PRIOn knowledge base
www.prio-n.com
1
Session cookies are not used for maintaining valid sessions in iTrack Easy. The user’s password is passed as a POST parameter over HTTPS using a base64 encoded passwd field on every request. In this implementation, sessions can only be terminated when the user changes the associated password.
Related
cvelist
cvelist
nvd
nvd
CVE-2016-6545
2018-07-13 20:29:00
cve
cve
CVE-2016-6545
2018-07-13 20:29:00
cert
cert
iTrack Easy contains multiple vulnerabilities
2016-10-25 00:00:00