CVE-2018-15513
CVE-2018-15513 affects totemomail 6.0.0 build 570 where the log viewer API/feature enables access to session IDs of high-privilege users by abusing access granted to a read-only auditor role. The underlying cause is not detailed beyond this access path; the impact is exposure of sensitive session...