CVE-2020-7932
CVE-2020-7932 affects OMERO.web prior to 5.6.3. The issue allows sensitive data elements (e.g., a session key) to be passed in URL query parameters. If a user is lured into clicking a malicious link, these parameters can be exposed in the Referer header seen by the target, and information in the ...