Plunet Plunet BusinessManager Session Hijacking Vulnerability Allowing Data Theft and Unauthorized Actions

Vulnerability

A vulnerability in Plunet Plunet BusinessManager version 10.15.1 allows for session hijacking, leading to data theft and unauthorized actions performed on behalf of the user.

Impact

Exploitation of this vulnerability could result in session hijacking, allowing an attacker to impersonate the user and potentially access sensitive data or perform actions on the user's behalf.

Added: Feb 11, 2026, 2:17 PM

Updated: Feb 11, 2026, 3:58 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.3

exploitability

6.0

remediation

0.0

relevance

2.9

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.3

exploitability

6.0

remediation

0.0

relevance

2.9

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Plunet Plunet BusinessManager Session Hijacking Vulnerability Allowing Data Theft and Unauthorized Actions

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating