3 matches found
CVE-2023-45659
creationtimestamp| type| source ---|---|--- 2023-10-17 07:32:48+00:00| seen| https://t.me/cibsecurity/72409 2024-01-08 15:08:23+00:00| seen| https://t.me/arpsyndicate/2651...
CVE-2023-45659 Session is not expiring after password reset in Engelsystem
Engelsystem is a shift planning system for chaos events. If a users' password is compromised and an attacker gained access to a users' account, i.e., logged in and obtained a session, an attackers' session is not terminated if the users' account password is reset. This vulnerability has been fixe...
CVE-2023-45659
Engelsystem is affected by CVE-2023-45659, where if a user’s password is compromised and an attacker gains access to that user’s session, the attacker’s session is not terminated after the user’s password is reset. The issue has a fix committed in dbb089315ff3d, and users are advised to update th...