CVE-2024-34467
May 4, 2024, 8:15 p.m.
Tags
Product(s) Impacted
ThinkPHP
- 8.0.3
Description
ThinkPHP 8.0.3 allows remote attackers to discover the PHPSESSION cookie because think_exception.tpl (aka the debug error output source code) provides this in an error message for a crafted URI in a GET request.
Weaknesses
Date
Published: May 4, 2024, 8:15 p.m.
Last Modified: May 4, 2024, 8:15 p.m.
Status : Received
CVE has been recently published to the CVE List and has been received by the NVD.
More infoSource
cve@mitre.org
References
https://github.com/
cve@mitre.org