Home / exploitsPDF  

Textpattern 4.8.8 Session Token Disclosure

Posted on 11 May 2023

Textpattern version 4.8.8 logs the session token in a GET request where it may end up getting disclosed in logs or via a referer.

 

TOP