VYPR

Code Dx

by Lm Sys

CVEs (1)

  • CVE-2023-2158Apr 27, 2023
    risk 0.00cvss epss 0.01

    Code Dx versions prior to 2023.4.2 are vulnerable to user impersonation attack where a malicious actor is able to gain access to another user's account by crafting a custom "Remember Me" token. This is possible due to the use of a hard-coded cipher which was used when generating…