Security Advisory

CVE-2020-24570

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-09-29 19:44:26

Last updated 2024-08-04 15:19:08

Assigner mitre

State PUBLISHED

Description

An issue was discovered in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 through 2.6.1. There is a CSRF issue (with resultant SSRF) in the com_mb24proxy module, allowing attackers to steal session information from logged-in users with a crafted link.

← Browse all CVEs View on cve.org ↗