Количество 4
Количество 4
CVE-2023-0044
If the Quarkus Form Authentication session cookie Path attribute is set to `/` then a cross-site attack may be initiated which might lead to the Information Disclosure. This attack can be prevented with the Quarkus CSRF Prevention feature.
CVE-2023-0044
If the Quarkus Form Authentication session cookie Path attribute is set to `/` then a cross-site attack may be initiated which might lead to the Information Disclosure. This attack can be prevented with the Quarkus CSRF Prevention feature.
GHSA-c57v-hc7m-8px2
Cross-site Scripting in Quarkus
BDU:2024-01801
Уязвимость компонента Form Authentication Java-фреймворка Quarkus, позволяющая нарушителю провести атаку межсайтового скриптинга (XSS)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-0044 If the Quarkus Form Authentication session cookie Path attribute is set to `/` then a cross-site attack may be initiated which might lead to the Information Disclosure. This attack can be prevented with the Quarkus CSRF Prevention feature. | CVSS3: 5.3 | 0% Низкий | около 3 лет назад |
 | CVE-2023-0044 If the Quarkus Form Authentication session cookie Path attribute is set to `/` then a cross-site attack may be initiated which might lead to the Information Disclosure. This attack can be prevented with the Quarkus CSRF Prevention feature. | CVSS3: 6.1 | 0% Низкий | почти 3 года назад |
| GHSA-c57v-hc7m-8px2 Cross-site Scripting in Quarkus | CVSS3: 6.1 | 0% Низкий | почти 3 года назад |
 | BDU:2024-01801 Уязвимость компонента Form Authentication Java-фреймворка Quarkus, позволяющая нарушителю провести атаку межсайтового скриптинга (XSS) | CVSS3: 6.1 | 0% Низкий | около 3 лет назад |
Уязвимостей на страницу