Vulnerability: Password Disclosure in Access Analysis CGI An-Analyzer

Vulnerability: Password Disclosure in Access Analysis CGI An-Analyzer

CVE-2019-5990 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Access analysis CGI An-Analyzer released in 2019 June 24 and earlier allow remote attackers to obtain a login password via HTTP referer.

Learn more about our Web Application Penetration Testing UK.