CVE-2023-6451 Information

Description

Publicly known cryptographic machine key in AlayaCare’s Procura Portal before 9.0.1.2 allows attackers to forge their own authentication cookies and bypass the application’s authentication mechanisms.

Reference

https://www.themissinglink.com.au/security-advisories/cve-2023-6451