CVE-2019-20060

MFScripts YetiShare v3.5.2 through v4.5.4 places sensitive information in the Referer header. If this leaks, then third parties may discover password-reset hashes, file-delete links, or other sensitive information.
Configurations

Configuration 1

cpe:2.3:a:mfscripts:yetishare:*:*:*:*:*:*:*:*

Information

Published : 2020-02-10 01:15

Updated : 2020-02-11 01:28


NVD link : CVE-2019-20060

Mitre link : CVE-2019-20060

Products Affected
No products.
CWE