← back
CVE-2022-1849

Session Fixation in filegator/filegator

CVSS 4.3 MEDIUMEPSS 0.7%CWE-384
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 4.3EPSS 0.7%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
24 May 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Session Fixation in GitHub repository filegator/filegator prior to 7.8.0.
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Affected products
filegator · filegator/filegator

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/filegator/filegator/commit/fcd3995f64f5dfc6a4c2c059cc22a2fef1e81225https://huntr.dev/bounties/881f8f36-d5c8-470d-8261-f109e6d5db4b