Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository ikus060/rdiffweb prior to 2.4.2.
References
Link | Resource |
---|---|
https://github.com/ikus060/rdiffweb/commit/f2de2371c5e13ce1c6fd6f9a1ed3e5d46b93cd7e | Patch Third Party Advisory |
https://huntr.dev/bounties/d8a32bd6-c76d-4140-a5ca-ef368a3058ce | Exploit Third Party Advisory |
Configurations
History
No history.
Information
Published : 2022-09-13 10:15
Updated : 2024-02-28 19:29
NVD link : CVE-2022-3174
Mitre link : CVE-2022-3174
CVE.ORG link : CVE-2022-3174
JSON object : View
Products Affected
ikus-soft
- rdiffweb