Описание
Pyload contains Sensitive Cookie in HTTPS Session Without 'Secure' Attribute
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository pyload/pyload prior to 0.5.0b3.dev32. The Secure attribute for sensitive cookies in HTTPS sessions is not set, which could cause the user agent to send those cookies in plaintext over an HTTP session. This issue is patched in version 0.5.0b3.dev32.
Пакеты
Наименование
pyload-ng
pip
Затронутые версииВерсия исправления
< 0.5.0b3.dev32
0.5.0b3.dev32
Связанные уязвимости
CVSS3: 5.3
nvd
около 3 лет назад
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository pyload/pyload prior to 0.5.0b3.dev32.
CVSS3: 5.3
debian
около 3 лет назад
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub ...