01 Jui 2015
CVE-2014-0999 Vulnerability
Sendio before 7.2.4 includes the session identifier in URLs in emails, which allows remote attackers to obtain sensitive information and hijack sessions by reading the jsessionid parameter in the Referrer HTTP header. (CVSS:5.0) (Last Update:2015-06-03)
Vulnerability Details : (1 public exploit) Sendio before 7.2.4 includes the session identifier in URLs in emails, which allows remote attackers to obtain sensitive information and hijack sessions by reading the jsessionid parameter in the Referrer HTTP header. Publish Date : 2015-06-02 Last Update Date : 2015-06-03 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2014-0999
- Number Of Affected Versions By Product
- References For CVE-2014-0999
| |||||||||||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2014-0999There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |