Topmanage: >> Olk Webstore >> 2020 Security Vulnerabilities
In TopManage OLK 2020, login CSRF can be chained with another vulnerability in order to takeover admin and user accounts.
CVSS Score
8.8
EPSS Score
0.002
Published
2020-02-18
An issue was discovered in TopManage OLK 2020. As there is no ReadOnly on the Session cookie, the user and admin accounts can be taken over in a DOM-Based XSS attack.
CVSS Score
6.1
EPSS Score
0.002
Published
2020-02-18