2 matches found
CVE-2022-47714
Last Yard 22.09.8-1 does not enforce HSTS headers...
CVE-2022-47714
CVE-2022-47714 affects Last Yard version 22.09.8-1 and is caused by the app not enforcing HSTS headers. According to the CVE entry, the vulnerability has a CVSS v3.1 base score of 9.8 (CRITICAL) with network attack vector, no privileges required, and no user interaction, affecting confidentiality...