VYPR

WebYaST

by OpenSUSE

CVEs (1)

  • CVE-2013-3709Dec 23, 2013
    risk 0.00cvss epss 0.00

    WebYaST 1.3 uses weak permissions for config/initializers/secret_token.rb, which allows local users to gain privileges by reading the Rails secret token from this file.