Vulnerabilities > IF ME > Ifme > 7.32
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-02-10 | CVE-2021-25992 | Insufficient Session Expiration vulnerability in If-Me Ifme In Ifme, versions 1.0.0 to v.7.33.2 don’t properly invalidate a user’s session even after the user initiated logout. | 7.5 |
2021-12-29 | CVE-2021-25991 | Unspecified vulnerability in If-Me Ifme In Ifme, versions v5.0.0 to v7.32 are vulnerable against an improper access control, which makes it possible for admins to ban themselves leading to their deactivation from Ifme account and complete loss of admin access to Ifme. network if-me | 4.9 |