Lucene search
PRIOn knowledge basePRION:CVE-2021-20786HistoryJul 30, 2021 - 2:15 p.m.
Cross site request forgery (csrf)
2021-07-3014:15:00
PRIOn knowledge base
www.prio-n.com
1
Cross-site request forgery (CSRF) vulnerability in GroupSession (GroupSession Free edition from ver2.2.0 to the version prior to ver5.1.0, GroupSession byCloud from ver3.0.3 to the version prior to ver5.1.0, and GroupSession ZION from ver3.0.3 to the version prior to ver5.1.0) allows a remote attacker to hijack the authentication of administrators via a specially crafted URL.
| CPE | Name | Operator | Version |
|---|---|---|---|
| groupsession | ge | 2.20 | |
| groupsession | lt | 5.1.0 | |
| groupsession_bycloud | ge | 3.0.3 | |
| groupsession_bycloud | lt | 5.1.0 | |
| groupsession_zion | ge | 3.0.3 | |
| groupsession_zion | lt | 5.1.0 |
Related
cvelist
cvelist
CVE-2021-20786
2021-07-28 00:45:27
nvd
nvd
CVE-2021-20786
2021-07-30 14:15:14
cve
cve
CVE-2021-20786
2021-07-30 14:15:14
jvn
jvn
JVN#86026700: Multiple vulnerabilities in GroupSession
2021-07-19 00:00:00