4 matches found
CVE-2020-24570
An issue was discovered in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 through 2.6.1. There is a CSRF issue with resultant SSRF in the commb24proxy module, allowing attackers to steal session information from logged-in users with a crafted link...
CVE-2020-24570
creationtimestamp| type| source ---|---|--- 2020-10-01 14:57:00+00:00| seen| https://t.me/truesecator/999...
CVE-2020-24570
An issue was discovered in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 through 2.6.1. There is a CSRF issue with resultant SSRF in the commb24proxy module, allowing attackers to steal session information from logged-in users with a crafted link...
CVE-2020-24570
MB CONNECT LINE MBConnect products (mymbCONNECT24 and mbCONNECT24) ≤ v2.6.1 contain a CSRF issue in the com_mb24proxy module that can trigger SSRF and allow an attacker to steal session information via a crafted link. Red Hat and CVE records align on the vulnerability and scope. Remediation: upgr...