According to CloudSEK, the critical exploit facilitates session persistence and cookie generation, enabling threat actors to maintain access to a valid session in an ongoing manner, even after the user resets their password.
For more information, visit The Hacker News.
Click here to contact Outsource IT