CVE-2021-3740 | chatwoot up to 2.3.x session fixiation

Posted by Angelo Barbosa | Nov 15, 2024 | CVE

A vulnerability was found in chatwoot up to 2.3.x and classified as critical. Affected by this issue is some unknown functionality. The manipulation leads to session fixiation.

This vulnerability is handled as CVE-2021-3740. Access to the local network is required for this attack. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2021-3740 | chatwoot up to 2.3.x session fixiation

Related Posts

CVE-2024-34044 | O-RAN E2T I-Release buildPrometheusList peerInfo null pointer dereference

CVE-2024-10978 | PostgreSQL up to 17.0 uses privileges assignment

CVE-2024-35169 | AREOI All Bootstrap Blocks Plugin up to 1.3.15 on WordPress cross site scripting

CVE-2023-40277 | OpenClinic 5.247.01 login.jsp message cross site scripting