Security Advisory

CVE-2023-26260

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-04-11 00:00:00

Last updated 2025-02-11 15:36:27

Assigner mitre

State PUBLISHED

Description

OXID eShop 6.2.x before 6.4.4 and 6.5.x before 6.5.2 allows session hijacking, leading to partial access of a customers account by an attacker, due to an improper check of the user agent.

← Browse all CVEs View on cve.org ↗