CVE-2022-2820

Session Fixation in GitHub repository namelessmc/nameless prior to v2.0.2.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7 HIGH
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:L
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Affected Products (NVD)
VendorProductVersion
namelessmcnameless
𝑥
< 2.0.2
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
namelessmcnameless
𝑥
< 2.0.2
ADP
Common Weakness Enumeration
References
https://github.com/namelessmc/nameless/commit/469bebc17855720e43f0c8209c88a57d2b55f6de
https://huntr.dev/bounties/df06b7d7-6077-43a5-bd81-3cc66f0d4d19
https://github.com/namelessmc/nameless/commit/469bebc17855720e43f0c8209c88a57d2b55f6de
https://huntr.dev/bounties/df06b7d7-6077-43a5-bd81-3cc66f0d4d19