Skip to content

Instantly share code, notes, and snippets.

@virendratiwari03

virendratiwari03/Microweber: Broken Authentication & Session Management Secret

Created November 4, 2020 06:37
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save virendratiwari03/9fdebe4d0b379d1996238b535add56d6 to your computer and use it in GitHub Desktop.
Save virendratiwari03/9fdebe4d0b379d1996238b535add56d6 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
Microweber: Broken Authentication & Session Management
Product: Microweber
Product Version: 1.1.18
Vulnerability: Broken Authentication & Session Management
Description:
Such flaws frequently give attackers unauthorized access to some system data or functionality. Occasionally, such flaws result in a complete system compromise.
The business impact depends on the protection needs of the application and data.
Attack Type: Local
Impact:
Attackers will often attempt to exploit unpatched flaws or access default accounts, unused pages, unprotected files and directories, etc to gain unauthorized access or knowledge of the system.
Reference:
https://owasp.org/www-project-top-ten/2017/A2_2017-Broken_Authentication
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment