22 Jan 2018
CVE-2018-6009 - CVE Vulnerability
In Yii Framework 2.x before 2.0.14, the switchIdentity function in web/User.php did not regenerate the CSRF token upon a change of identity. (CVSS:0.0) (Last Update:2018-01-22)
Vulnerability Details : In Yii Framework 2.x before 2.0.14, the switchIdentity function in web/User.php did not regenerate the CSRF token upon a change of identity. Publish Date : 2018-01-22 Last Update Date : 2018-01-22 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2018-6009
- References For CVE-2018-6009
| ||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2018-6009There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |