exploitDog

GHSA-655j-6f48-j3jp

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Hasplm cookie in Gemalto Admin Control Center, all versions prior to 7.92, does not have 'HttpOnly' flag. This allows malicious javascript to steal it.

Hasplm cookie in Gemalto Admin Control Center, all versions prior to 7.92, does not have 'HttpOnly' flag. This allows malicious javascript to steal it.

Ссылки

EPSS

Процентиль: 52%

0.00296

Низкий

CVE ID

Дефекты

CWE-732

Связанные уязвимости

CVE-2019-8283

CVSS3: 6.5

nvd

больше 6 лет назад

Hasplm cookie in Gemalto Admin Control Center, all versions prior to 7.92, does not have 'HttpOnly' flag. This allows malicious javascript to steal it.

EPSS

Процентиль: 52%

0.00296

Низкий

CVE ID

Дефекты

CWE-732