First published: Fri Sep 23 2022(Updated: )
Session Fixation in GitHub repository ikus060/rdiffweb prior to 2.4.7.
Credit: security@huntr.dev
Affected Software | Affected Version | How to fix |
---|---|---|
Ikus-soft Rdiffweb | <2.4.7 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this vulnerability is CVE-2022-3269.
The severity of vulnerability CVE-2022-3269 is critical with a CVSS score of 9.8.
The affected software for vulnerability CVE-2022-3269 is ikus-soft rdiffweb prior to version 2.4.7.
To fix vulnerability CVE-2022-3269, update the ikus-soft rdiffweb software to version 2.4.7 or later.
More information about vulnerability CVE-2022-3269 can be found at the following references: [GitHub Commit](https://github.com/ikus060/rdiffweb/commit/39e7dcd4a1f44d2a7bd92b79d78a800910b1b22b), [Huntr Bounty](https://huntr.dev/bounties/67c25969-5e7a-4424-817e-e1a918f63cc6).