Use of a Hard-coded Cryptographic Key used to protect cookie session data in /var/www/xms/application/config/config.php in the administrative console in Dialogic PowerMedia XMS up to and including 3.5 allows remote malicious users to bypass authentication.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dialogic powermedia xms |