Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2024-6739

Disclosure Date: July 15, 2024 (last updated July 17, 2024)
The session cookie in MailGates and MailAudit from Openfind does not have the HttpOnly flag enabled, allowing remote attackers to potentially steal the session cookie via XSS.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0