Download
| Alert*
ALAS-2018-968 --- mod_auth_mellon mod24_auth_mellon
Cross-site session transfer vulnerability:It was found that mod_auth_mellon was vulnerable to a cross-site session transfer attack. An attacker with access to one web site on a server could use the same session to get access to a different site running on the same server
|