VYPR
High severity8.2NVD Advisory· Published Sep 16, 2019· Updated Jun 17, 2026

CVE-2019-16371

CVE-2019-16371

Description

LogMeIn LastPass before 4.33.0 allows attackers to construct a crafted web site that captures the credentials for a victim's account on a previously visited web site, because do_popupregister can be bypassed via clickjacking.

Affected products

3

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.