CVE-2020-7780 – This affects the package com.softwaremill.akka-http-session:core_2.13 before 0.5.11; the p …

27 November 2020

Vuln ID: CVE-2020-7780

Published: 2020-11-27 17:15:12Z

Description: This affects the package com.softwaremill.akka-http-session:core_2.13 before 0.5.11; the package com.softwaremill.akka-http-session:core_2.12 before 0.5.11; the package com.softwaremill.akka-http-session:core_2.11 before 0.5.11. For older versions, endpoints protected by randomTokenCsrfProtection could be bypassed with an empty X-XSRF-TOKEN header and an empty XSRF-TOKEN cookie.

Source: NVD.NIST.GOV

Date:

27 November 2020

Categorie(s):

NVD

Tag(s):

NVD

Integrate Kubernetes policy-as-code solutions into Security Hub18 April 2024
Korean researcher details scheme abusing Apple’s third-party pickup policy18 April 2024
Russia’s Sandworm APT linked to attack on Texas water plant18 April 2024
Change Healthcare data for sale on dark web as fallout from ransomware attack spirals out of control18 April 2024
New Cyber-Threat MadMxShell Exploits Typosquatting and Google Ads18 April 2024