Medium severity5.8NVD Advisory· Published Jul 15, 2024· Updated Jun 17, 2026
CVE-2024-6741
CVE-2024-6741
Description
Openfind's Mail2000 has a vulnerability that allows the HttpOnly flag to be bypassed. Unauthenticated remote attackers can exploit this vulnerability using specific JavaScript code to obtain the session cookie with the HttpOnly flag enabled.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3Patches
Vulnerability mechanics
References
3- www.openfind.com.tw/taiwan/download/Openfind_OF-ISAC-24-007.pdfnvdExploit
- www.twcert.org.tw/en/cp-139-7941-b66e7-2.htmlnvdThird Party Advisory
- www.twcert.org.tw/tw/cp-132-7940-0177a-1.htmlnvdThird Party Advisory
News mentions
0No linked articles in our index yet.