3 matches found
Design/Logic Flaw
A vulnerability in the offline access mode of Cisco Duo Two-Factor Authentication for macOS and Duo Authentication for Windows Logon and RDP could allow an unauthenticated, physical attacker to replay valid user session credentials and gain unauthorized access to an affected macOS or Windows...
Cockpit 代码问题漏洞
Cockpit is an interactive server management interface. An access control error vulnerability exists in Cockpit versions prior to 2.2.0 that stems from insufficient session expiration. An attacker could exploit the vulnerability to take control of an account using expired session credentials...
Pluck 4.7.3 - (Delete Files) CSRF Vulnerability
Exploit for php platform in category web applications Document Title: =============== Pluck 4.7.3 - Delete Files CSRF Vulnerability Release Date: ============= 2016-10-12 Vulnerability Disclosure Timeline: ================================== 2016-10-12 : Discovery of the Vulnerability 2016-10-12 :...