3 matches found
CVE-2022-45893
Planet eStream before 6.72.10.07 allows a low-privileged user to gain access to administrative and high-privileged user accounts by changing the value of the ON cookie. A brute-force attack can calculate a value that provides permanent access...
CVE-2022-45893
Planet eStream before 6.72.10.07 allows a low-privileged user to gain access to administrative and high-privileged user accounts by changing the value of the ON cookie. A brute-force attack can calculate a value that provides permanent access...
CVE-2022-45893
Planet eStream (versions prior to 6.72.10.07) has a cookie-based authentication flaw in the ON cookie that can be exploited by a low-privilege user to access administrative and high-privilege accounts. A brute-force attack can compute a value enabling permanent access, effectively compromising co...