OXID eShop 6.2.x before 6.4.4 and 6.5.x before 6.5.2 allows session hijacking, leading to partial access of a customer's account by an attacker, due to an improper check of the user agent.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2023-04-11T00:00:00
Updated: 2024-08-02T11:46:23.872Z
Reserved: 2023-02-21T00:00:00
Link: CVE-2023-26260
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-04-11T21:15:21.067
Modified: 2023-04-19T19:12:33.547
Link: CVE-2023-26260
Redhat
No data.