Security
Headlines

Headlines Latest CVEs

Headline

GHSA-qq8m-9rpx-w2fm: Admidio Insufficient Session Expiration vulnerability

Insufficient Session Expiration in GitHub repository admidio/admidio prior to 4.2.11. This vulnerability allows a user’s session to remain valid even after the user has logged out, potentially granting unauthorized access to sensitive areas and functionalities.

1 year ago

#vulnerability #git #auth

Admidio Insufficient Session Expiration vulnerability

Moderate severity GitHub Reviewed Published Aug 6, 2023 to the GitHub Advisory Database • Updated Aug 9, 2023

Related news

CVE-2023-4190: Session data not removed completly after logout #1470 · Admidio/admidio@391fb2a

Insufficient Session Expiration in GitHub repository admidio/admidio prior to 4.2.11.

1 year ago

#vulnerability #git

ghsa: Latest News

GHSA-7p9f-6x8j-gxxp: CRI-O: Maliciously structured checkpoint file can gain arbitrary node access

2 hours ago

GHSA-hh33-46q4-hwm2: Re-creating a deleted user in lakeFS will re-enable previous user credentials that existed prior to its deletion

4 hours ago

GHSA-rmv2-8jjc-23xw: TCPDF Local File Inclusion vulnerability

5 hours ago

GHSA-w5rq-g9r6-vrcg: @dapperduckling/keycloak-connector-server has Reflected XSS Vulnerability in Authentication Flow URL Handling

7 hours ago

GHSA-q4xm-6fjc-5f6w: sigstore-java has vulnerability with bundle verification

7 hours ago