{"id":"CVE-2024-41475","details":"Gnuboard g6 6.0.7 is vulnerable to Session hijacking due to a CORS misconfiguration.","modified":"2026-04-10T05:13:40.271495Z","published":"2024-08-12T17:15:17.257Z","references":[{"type":"EVIDENCE","url":"https://gist.github.com/AkiaCode/7c878b1699931314246d6589d86b1e89"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/gnuboard/g6","events":[{"introduced":"0"},{"last_affected":"5e3ff451b3a321f86dfe258908c3b5535a2527f8"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"6.0.7"}]}}],"versions":["6.0.0","6.0.1","6.0.2","6.0.3","6.0.4","6.0.5","6.0.6","6.0.7"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-41475.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}