Easyvista : Security Vulnerabilities, CVEs, (Gain Privilege)
The single sign-on (SSO) implementation in EasyVista before 2010.1.1.89 allows remote attackers to bypass authentication via a modified url_account parameter, in conjunction with a valid login name in the SSPI_HEADER parameter, to index.php.
Max CVSS
5.0
EPSS Score
0.54%
Published
2012-02-22
Updated
2012-03-21
1 vulnerabilities found