VYPR
Unrated severityNVD Advisory· Published Sep 29, 2020· Updated Aug 4, 2024

CVE-2020-24570

CVE-2020-24570

Description

An issue was discovered in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 through 2.6.1. There is a CSRF issue (with resultant SSRF) in the com_mb24proxy module, allowing attackers to steal session information from logged-in users with a crafted link.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • MB CONNECT LINE/mbCONNECT24description
  • Mbconnectline/Mymbconnect24llm-fuzzy2 versions
    <=2.6.1+ 1 more
    • (no CPE)range: <=2.6.1
    • (no CPE)range: <=2.6.1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.