Vdgsecurity: >> Vdg Sense >> 2.3.14 Security Vulnerabilities
VDG Security SENSE (formerly DIVA) before 2.3.15 allows remote attackers to bypass authentication, and consequently read and modify arbitrary plugin settings, via an encoded : (colon) character in the Authorization HTTP header.
CVSS Score
6.4
EPSS Score
0.006
Published
2015-01-08