13 Layers
SHARE

In GFOS Workforce Management 4.8.272.1, the login page of application is prone to authentication bypass, allowing anyone (who knows a user’s credentials except the password) to get entree to an account. This occurs because of JSESSIONID mismanagement. (CVSS:0.0) (Closing Update:2021-10-04)

13 Layers Managed Security Services