Security Advisory

CVE-2024-6741

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-07-15 08:26:32

Last updated 2024-08-01 21:41:04

Assigner twcert

State PUBLISHED

Description

Openfinds Mail2000 has a vulnerability that allows the HttpOnly flag to be bypassed. Unauthenticated remote attackers can exploit this vulnerability using specific JavaScript code to obtain the session cookie with the HttpOnly flag enabled.

← Browse all CVEs View on cve.org ↗