Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository it-novum/openitcockpit prior to 4.6.6.
References
Link | Resource |
---|---|
https://github.com/it-novum/openitcockpit/commit/6c717f3c352e55257fc3fef2c5dec111f7d2ee6b | Patch |
https://huntr.dev/bounties/f3b277bb-91db-419e-bcc4-fe0b055d2551 | Exploit Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: @huntrdev
Published: 2023-07-06T00:00:20.096Z
Updated: 2023-07-06T00:00:20.096Z
Reserved: 2023-07-06T00:00:07.172Z
Link: CVE-2023-3520
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-07-06T01:15:08.930
Modified: 2023-07-12T15:34:13.653
Link: CVE-2023-3520
JSON object: View
Redhat Information
No data.
CWE