CVE-2019-25091

🗓️ 27 Dec 2022 23:10:15Reported by [email protected]Type

A vulnerability in nsupdate.info allows remote attackers to initiate a CSRF Cookie Handler attack by manipulating the CSRF_COOKIE_HTTPONLY argument

Reporter	Title	Published	Views	Family All 7
Cvelist	CVE-2019-25091 nsupdate.info CSRF Cookie base.py cookie httponly flag	27 Dec 202222:42	–	cvelist
CVE	CVE-2019-25091	27 Dec 202223:15	–	cve
Veracode	Cross-Site Request Forgery (CSRF)	28 Dec 202208:37	–	veracode
OSV	CVE-2019-25091	27 Dec 202223:15	–	osv
OSV	nsupdate.info has Sensitive Cookie Without 'HttpOnly' Flag	28 Dec 202200:30	–	osv
Prion	Cross site request forgery (csrf)	27 Dec 202223:15	–	prion
Github Security Blog	nsupdate.info has Sensitive Cookie Without 'HttpOnly' Flag	28 Dec 202200:30	–	github

Nvd

Node

nsupdate nsupdate.infoRange<2019-05-19

Source	Link
github	www.github.com/nsupdate-info/nsupdate.info/pull/410
vuldb	www.vuldb.com/
github	www.github.com/nsupdate-info/nsupdate.info/commit/60a3fe559c453bc36b0ec3e5dd39c1303640a59a
vuldb	www.vuldb.com/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo