Lucene search
PRIOn knowledge basePRION:CVE-2013-4724HistoryJun 06, 2014 - 2:55 p.m.
Design/Logic Flaw
2014-06-0614:55:00
PRIOn knowledge base
www.prio-n.com
1
DDSN Interactive cm3 Acora CMS 6.0.6/1a, 6.0.2/1a, 5.5.7/12b, 5.5.0/1b-p1, and possibly other versions, does not include the HTTPOnly flag in a Set-Cookie header for an unspecified cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie.
Related
cvelist
cvelist
CVE-2013-4724
2014-06-06 14:00:00
cve
cve
CVE-2013-4724
2014-06-06 14:55:04
nvd
nvd
CVE-2013-4724
2014-06-06 14:55:04
packetstorm
packetstorm
CM3 AcoraCMS XSS / CSRF / Redirection / Disclosure
2013-08-26 00:00:00
openvas
openvas
CM3 AcoraCMS Multiple XSS, CSRF and Open Redirect Vulnerabilities
2014-04-29 00:00:00
zdt
zdt
CM3 AcoraCMS XSS / CSRF / Redirection / Disclosure Vulnerabilities
2013-08-27 00:00:00