VYPR

enlogic:show

by All Dynamics Software

CVEs (1)

  • CVE-2020-36913MedJan 6, 2026
    risk 0.34cvss 5.3epss 0.00

    All-Dynamics Software enlogic:show 2.0.2 contains a session fixation vulnerability that allows attackers to set a predefined PHP session identifier during the login process. Attackers can forge HTTP GET requests to welcome.php with a manipulated session token to bypass…