CVE-2023-4126: Insufficient Session Expiration

August 3, 2023

Insufficient Session Expiration in GitHub repository answerdev/answer prior to v1.1.0.

References

github.com/advisories/GHSA-ggcf-hwxp-rc77
github.com/answerdev/answer/commit/4f468b58d0dea51290bfbdd3e96332b0014c8730
huntr.dev/bounties/7f50bf1c-bcb9-46ca-8cec-211493d280c5
nvd.nist.gov/vuln/detail/CVE-2023-4126

Code Behaviors & Features

Detect and mitigate CVE-2023-4126 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →