RSS   Vulnerabilities for 'Easyvista'   RSS

2012-02-22
 
CVE-2012-1256

CWE-287
 
 
The single sign-on (SSO) implementation in EasyVista before 2010.1.1.89 allows remote attackers to bypass authentication via a modified url_account parameter, in conjunction with a valid login name in the SSPI_HEADER parameter, to index.php.

 

Copyright 2024, cxsecurity.com

 

Back to Top