Security Advisory

CVE-2020-8986

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-03-24 20:12:27

Last updated 2024-08-04 10:19:19

Assigner mitre

State PUBLISHED

Description

lib/NSSDropbox.php in ZendTo prior to 5.22-2 Beta failed to properly check for equality when validating the session cookie, allowing an attacker to gain administrative access with a large number of requests.

← Browse all CVEs View on cve.org ↗