Filtered by vendor Franklin-electric
Subscribe
Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2023-48928 | 1 Franklin-electric | 1 System Sentinel Anyware | 2024-02-05 | N/A | 6.1 MEDIUM |
Franklin Fueling Systems System Sentinel AnyWare (SSA) version 1.6.24.492 is vulnerable to Open Redirect. The 'path' parameter of the prefs.asp resource allows an attacker to redirect a victim user to an arbitrary web site using a crafted URL. | |||||
CVE-2023-48929 | 1 Franklin-electric | 1 System Sentinel Anyware | 2024-02-05 | N/A | 9.8 CRITICAL |
Franklin Fueling Systems System Sentinel AnyWare (SSA) version 1.6.24.492 is vulnerable to Session Fixation. The 'sid' parameter in the group_status.asp resource allows an attacker to escalate privileges and obtain sensitive information. |