2 matches found
CVE-2021-27913
The CVE-2021-27913 issue is due to using PHP’s mt_rand to generate session tokens, which is cryptographically insecure and can enable enumeration of session tokens. Affected software is Mautic, specifically versions prior to 3.3.4 and versions prior to 4.0.0. The root cause is reliance on a non-c...
CVE-2021-27913
creationtimestamp| type| source ---|---|--- 2021-08-30 14:04:38+00:00| published-proof-of-concept| https://github.com/mautic/mautic/security/advisories/GHSA-x7g2-wrrp-r6h3...