Lucene search
+L

4 matches found

Circl
Circl
added 2024/12/30 4:48 p.m.8 views

CVE-2024-56733

creationtimestamp| type| source ---|---|--- 2024-12-30 16:48:39+00:00| seen| https://infosec.exchange/users/cve/statuses/113742795180540697 2024-12-30 19:18:33+00:00| seen| https://t.me/cvedetector/13941...

5.7CVSS4.8AI score0.00209EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/12/30 4:46 p.m.9 views

CVE-2024-56733 Password Pusher Allows Session Token Interception Leading to Potential Hijacking

Password Pusher is an open source application to communicate sensitive information over the web. A vulnerability has been reported in versions 1.50.3 and prior where an attacker can copy the session cookie before a user logs out, potentially allowing session hijacking. Although the session token ...

5.7CVSS5.5AI score0.00209EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/30 4:46 p.m.23 views

CVE-2024-56733 Password Pusher Allows Session Token Interception Leading to Potential Hijacking

Password Pusher is an open source application to communicate sensitive information over the web. A vulnerability has been reported in versions 1.50.3 and prior where an attacker can copy the session cookie before a user logs out, potentially allowing session hijacking. Although the session token ...

5.7CVSS0.00209EPSS
Exploits0References1
CVE
CVE
added 2024/12/30 4:46 p.m.60 views

CVE-2024-56733

CVE-2024-56733 affects Password Pusher (versions ≤ 1.50.3). A vulnerability allows an attacker to copy the session cookie before logout, potentially enabling session hijacking until the token expires or is cleared. Root cause centers on accessing an active session cookie (e.g., MITM, XSS, or loca...

5.7CVSS5.5AI score0.00209EPSS
Exploits0References1
Rows per page
Query Builder