Unrated severityNVD Advisory· Published Sep 3, 2020· Updated Aug 4, 2024
CVE-2020-24876
CVE-2020-24876
Description
Use of a hard-coded cryptographic key in Pancake versions < 4.13.29 allows an attacker to forge session cookies, which may lead to remote privilege escalation.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Pancake/Pancakedescription
Patches
Vulnerability mechanics
References
2- www.pancakeapp.com/blog/entry/pancake-4.13.29-releasedmitrex_refsource_MISC
- www.vaadata.com/blog/hardcoded-secret-leads-to-account-takeover/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.