exploitDog

GHSA-m754-rpq6-3vf7

Опубликовано: 07 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

Cookie without HTTPONLY flag set. NUMBER cookie(s) was set without Secure or HTTPOnly flags. The images show the cookie with the missing flag. (WebUI)

Cookie without HTTPONLY flag set. NUMBER cookie(s) was set without Secure or HTTPOnly flags. The images show the cookie with the missing flag. (WebUI)

Ссылки

EPSS

Процентиль: 30%

0.0011

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-311

CWE-614

Связанные уязвимости

CVE-2021-27764

CVSS3: 7.4

nvd

почти 4 года назад

Cookie without HTTPONLY flag set. NUMBER cookie(s) was set without Secure or HTTPOnly flags. The images show the cookie with the missing flag. (WebUI)

EPSS

Процентиль: 30%

0.0011

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-311

CWE-614