9 matches found
CVE-2026-28678 dsa-hub-server: Clear-Text Storage of Sensitive Data
DSA Study Hub is an interactive educational web application. Prior to commit d527fba, the user authentication system in server/routes/auth.js was found to be vulnerable to Insufficiently Protected Credentials. Authentication tokens JWTs were stored in HTTP cookies without cryptographic protection...
CVE-2026-28678
DSA Study Hub (server/routes/auth.js) is affected. Before commit d527fba, authentication used JWTs stored in HTTP cookies without cryptographic protection of the payload, enabling Insufficiently Protected Credentials. The issue impacts the authentication flow and could allow unauthorized access; ...
EUVD-2012-0868
Malware in sbrugna...
Minor update (2) for Vivaldi Desktop Browser 5.0
Download Vivaldi The following improvements were made since the first 5.0 stable, minor update: Chromium Upgraded to 96.0.4664.113: includes fix for CVE-2021-4102 Mail Beta Import Email from Opera function is disabled VB-84729 PrivacyPrivate Window Cookies can sometimes get saved to the normal...
Information disclosure
uzbl: Information disclosure via world-readable cookies storage file...
CVE-2012-0843
uzbl: Information disclosure via world-readable cookies storage file...
CVE-2012-0843
CVE-2012-0843 affects the uzbl browser, where information disclosure arises from a world-readable cookies storage file. Root cause is exposure of cookies data stored in a world-readable file, enabling partial confidentiality impact (C: HIGH in CVSS3.1) with local, low-complexity access and no aut...
CVE-2012-0843
uzbl: Information disclosure via world-readable cookies storage file...
CVE-2012-0843
Removed by vendor...