Franklin Fueling Systems System Sentinel AnyWare (SSA) version 1.6.24.492 is vulnerable to Session Fixation. The 'sid' parameter in the group_status.asp resource allows an attacker to escalate privileges and obtain sensitive information.
References
Link | Resource |
---|---|
https://github.com/MatJosephs/CVEs/tree/main/CVE-2023-48929 | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-12-08T00:00:00
Updated: 2023-12-08T04:51:05.422542
Reserved: 2023-11-20T00:00:00
Link: CVE-2023-48929
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-12-08T05:15:08.897
Modified: 2023-12-12T17:12:58.153
Link: CVE-2023-48929
JSON object: View
Redhat Information
No data.
CWE