Filtered by vendor Enonic Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-23679 1 Enonic 1 Xp 2024-11-21 9.8 Critical
Enonic XP versions less than 7.7.4 are vulnerable to a session fixation issue. An remote and unauthenticated attacker can use prior sessions due to the lack of invalidating session attributes.