CVE-2024-6741

Published: 2024-07-15T09:15Z

Last Modified: 2024-11-21T09:50Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Openfind's Mail2000 has a vulnerability that allows the HttpOnly flag to be bypassed. Unauthenticated remote attackers can exploit this vulnerability using specific JavaScript code to obtain the session cookie with the HttpOnly flag enabled. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt