12Ara
CVE-2023-49804 | louislam uptime-kuma up to 1.23.8 Password Change session fixiation (GHSA-88j4-pcx8-q4q3)
A vulnerability classified as critical has been found in louislam uptime-kuma up to 1.23.8. Affected is an unknown function of the component Password Change Handler. The manipulation leads to session fixiation. This vulnerability is traded as CVE-2023-49804. The attack needs to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.