5 matches found
CVE-2024-25628
creationtimestamp| type| source ---|---|--- 2024-02-16 22:22:02+00:00| seen| https://t.me/ctinow/186662...
CVE-2024-25628 Insufficient Session Expiration in alf.io
Alf.io is a free and open source event attendance management system. In versions prior to 2.0-M4-2402 users can access the admin area even after being invalidated/deleted. This issue has been addressed in version 2.0-M4-2402. All users are advised to upgrade. There are no known workarounds for th...
CVE-2024-25628 Insufficient Session Expiration in alf.io
Alf.io is a free and open source event attendance management system. In versions prior to 2.0-M4-2402 users can access the admin area even after being invalidated/deleted. This issue has been addressed in version 2.0-M4-2402. All users are advised to upgrade. There are no known workarounds for th...
CVE-2024-25628
CVE-2024-25628 affects Alf.io, an open source event attendance management system. The vulnerability is described as insufficient session expiration: in versions prior to 2.0-M4-2402, users can access the admin area even after being invalidated or deleted. The issue has been addressed in version 2...
CVE-2024-25628 Insufficient Session Expiration in alf.io
Alf.io is a free and open source event attendance management system. In versions prior to 2.0-M4-2402 users can access the admin area even after being invalidated/deleted. This issue has been addressed in version 2.0-M4-2402. All users are advised to upgrade. There are no known workarounds for th...