CVE-2023-49261

High

The "tokenKey" value used in user authorization is visible in the HTML source of the login page.

CERT-PL·CWE-201·Published 2024-01-12

CVSS

7.5

EPSS

0.00

KEV

Exploits

cve.orgen

96 chars

The "tokenKey" value used in user authorization is visible in the HTML source of the login page.

NVDen

96 chars

The "tokenKey" value used in user authorization is visible in the HTML source of the login page.

NVDes

130 chars

El valor "tokenKey" utilizado en la autorización del usuario es visible en el código fuente HTML de la página de inicio de sesión.

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	cve.org	7.5	—	—	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
3.1	Primary	NVD	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N