CVE-2024-48929 | Umbraco CMS up to 10.8.6/13.5.1 Sign-Out session fixiation (GHSA-wxw9-6pv9-c3xc)

Posted by Angelo Barbosa | Oct 22, 2024 | CVE

A vulnerability classified as problematic has been found in Umbraco CMS up to 10.8.6/13.5.1. Affected is an unknown function of the component Sign-Out. The manipulation leads to session fixiation.

This vulnerability is traded as CVE-2024-48929. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-48929 | Umbraco CMS up to 10.8.6/13.5.1 Sign-Out session fixiation (GHSA-wxw9-6pv9-c3xc)

Related Posts

CVE-2024-29390 | Daily Expenses Management System 1.0 add-expense.php item sql injection

CVE-2024-32758 | Johnson Controls exacqVision Client/exacqVision Server prior 24.06 inadequate encryption (icsa-24-214-01)

CVE-2024-4863 | Kadence Gutenberg Blocks Plugin up to 3.2.38 on WordPress titleFont cross site scripting

CVE-2024-8541 | Discount Rules for WooCommerce Plugin up to 2.6.5 on WordPress cross site scripting