RSS   Vulnerabilities for 'Pancake'   RSS

2020-09-03
 
CVE-2020-24876

CWE-798
 

 
Use of a hard-coded cryptographic key in Pancake versions < 4.13.29 allows an attacker to forge session cookies, which may lead to remote privilege escalation.

 


Copyright 2024, cxsecurity.com

 

Back to Top