CVE-2022-28113

An issue in upload.csp of FANTEC GmbH MWiD25-DS Firmware v2.000.030 allows attackers to write files and reset the user passwords without having a valid session cookie.
Configurations

Configuration 1


Information

Published : 2022-04-15 07:15

Updated : 2022-04-25 06:49


NVD link : CVE-2022-28113

Mitre link : CVE-2022-28113

Products Affected
No products.
CWE
CWE-565

Reliance on Cookies without Validation and Integrity Checking