Halo is a light, clean, and powerful Java blogging system. Halo version 0.4.3 contains an incorrect access control vulnerability. An attacker could use this vulnerability to bypass encryption via a cookie and view encrypted posts.
CPE | Name | Operator | Version |
---|---|---|---|
bungie studios halo | eq | 0.4.3 |