2 matches found
CVE-2015-1173
CVE-2015-1173 affects Unit4 Polska TETA Web (22.62.3.4). The vulnerability is an authorization bypass where access to the Design Mode and Debug Logger modules is not properly restricted, allowing a remote attacker to gain privileges via a specially crafted “received” parameter. This is documented...
CVE-2015-1174
CVE-2015-1174 affects Unit4 Polska TETA Web (formerly TETA Galactica) up to version 22.62.3.4. The vulnerability is a session fixation flaw that allows a remote attacker to hijack a user’s web session by manipulating the session identifier. The CNVD entry corroborates the affected software and vu...