Filtered by vendor Franklin-electric Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-48929 1 Franklin-electric 1 System Sentinel Anyware 2024-11-21 9.8 Critical
Franklin Fueling Systems System Sentinel AnyWare (SSA) version 1.6.24.492 is vulnerable to Session Fixation. The 'sid' parameter in the group_status.asp resource allows an attacker to escalate privileges and obtain sensitive information.
CVE-2023-48928 1 Franklin-electric 1 System Sentinel Anyware 2024-11-21 6.1 Medium
Franklin Fueling Systems System Sentinel AnyWare (SSA) version 1.6.24.492 is vulnerable to Open Redirect. The 'path' parameter of the prefs.asp resource allows an attacker to redirect a victim user to an arbitrary web site using a crafted URL.