Improper Input Validation

Overview hono is an Ultrafast web framework for the Edges Affected versions of this package are vulnerable to Improper Input Validation via the getCookie function. An attacker can override legitimate cookies and bypass prefix protections by setting cookies with non-breaking space prefixes, leadin...

PT-2025-50320

Name of the Vulnerable Software and Affected Versions versions prior to 2025-41732 Description An unauthenticated remote attacker can exploit unsafe sscanf calls within the check cookie function to write arbitrary data into fixed-size stack buffers, potentially leading to full device compromise...

CVE-2025-9376

The Block Bad Bots and Stop Bad Bots Crawlers and Spiders and Anti Spam Protection plugin for WordPress is vulnerable to unauthorized access of data due to an insufficient capability check on the 'stopbadbotscheckwordpressloggedincookie' function in all versions up to, and including, 11.58. This...

cookie-encrypter 安全漏洞

cookie-encrypter is a cookie encryption and decryption library by the individual developer Emmanuel Bourmalo. A security vulnerability exists in cookie-encrypter version v1.0.1, which stems from an issue with the index.js decryptCookie function that allows an attacker to perform a bit flipping...

Information Disclosure

codeigniter4/framework is vulnerable to information disclosure. The vulnerability exists in the setcookie function because it does not reflect setting $secure or $httponly values to true in config or cookie, which exposes them to scripts, allowing an attacker to gain access to internal data...

EulerOS Virtualization for ARM 64 3.0.6.0 : libsoup (EulerOS-SA-2020-2047)

According to the versions of the libsoup package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - A stack-based buffer overflow flaw was discovered within the HTTP processing of libsoup. A remote attacker could explo...

Linux kernel local denial of service vulnerability (CNVD-2017-05409)

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A security vulnerability exists in the cookie function of the packet action API implementation process in the net/sched/actapi.c file in Linux kernel versions 4.11.x through...

UBUNTU-CVE-2015-4625

Integer overflow in the authenticationagentnewcookie function in PolicyKit aka polkit before 0.113 allows local users to gain privileges by creating a large number of connections, which triggers the issuance of a duplicate cookie value...

SDCMS background to bypass directly into the,A not common design mistakes case study-vulnerability warning-the black bar safety net

Brief description: SDCMS background to bypass directly into the: test version 2. 0 beta2 other versions not tested Detailed description: Islogin //determine login method sub islogin if sdcms. strlenadminid=0 or sdcms. strlenadminname=0 then dim t0,t1,t2 t0=sdcms. getintsdcms. loadcookie"adminid",...

cpg1414-sql.txt

table prefix\n"; print " - hostname\n"; print " - web dirname \n"; print " - force mode - '0' - for Off or "album number" for force mode On \n"; print " table prefix - prefix of sql tables\n"; print " example: " . $argv0 . " coppermine.site photo/ 1 cpg1410\n"; credits; / FUNCTIONS / if...