An issue was discovered in GamerPolls 0.4.6, related to config/environments/all.js and config/initializers/02_passport.js. An attacker can edit the Passport.js contents of the session cookie to contain the ID number of the account they wish to take over, and re-sign it using the hard coded secret.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2018-06-05T15:00:00
Updated: 2024-08-05T07:54:36.348Z
Reserved: 2018-05-10T00:00:00
Link: CVE-2018-10966
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2018-06-05T15:29:00.313
Modified: 2018-07-20T14:35:38.053
Link: CVE-2018-10966
Redhat
No data.