2020-01-25 18:41:34
mitre
PUBLISHED
Rapid7 Nexpose before 5.5.4 contains a session hijacking vulnerability which allows remote attackers to capture a users session and gain unauthorized access.