CVE-2023-1151 SourceCodester Electronic Medical Records System Cookie administrator.php sql injection

A vulnerability was found in SourceCodester Electronic Medical Records System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file administrator.php of the component Cookie Handler. The manipulation of the argument userid leads to sql...

PT-2023-16783 · Sourcecodester · Sourcecodester Electronic Medical Records System

Name of the Vulnerable Software and Affected Versions: SourceCodester Electronic Medical Records System version 1.0 Description: A critical issue has been found in the Cookie Handler component of the SourceCodester Electronic Medical Records System, specifically in the file administrator.php. The...

CVE-2022-4890

A vulnerability, which was classified as critical, has been found in abhilash1985 PredictApp. This issue affects some unknown processing of the file config/initializers/newframeworkdefaults70.rb of the component Cookie Handler. The manipulation leads to deserialization. The attack may be initiate...

CVE-2022-4890

A vulnerability, which was classified as critical, has been found in abhilash1985 PredictApp. This issue affects some unknown processing of the file config/initializers/newframeworkdefaults70.rb of the component Cookie Handler. The manipulation leads to deserialization. The attack may be initiate...

Deserialization of untrusted data

A vulnerability, which was classified as critical, has been found in abhilash1985 PredictApp. This issue affects some unknown processing of the file config/initializers/newframeworkdefaults70.rb of the component Cookie Handler. The manipulation leads to deserialization. The attack may be initiate...

CVE-2022-4890

CVE-2022-4890 affects the abhilash1985 PredictApp Cookie Handler. The vulnerability arises from deserialization caused by processing in config/initializers/new_framework_defaults_7_0.rb, enabling a remote attack. The issue is deemed critical (NVD CVSSv3.1 base score 9.8) with high impact on confi...

CVE-2022-4890 abhilash1985 PredictApp Cookie new_framework_defaults_7_0.rb deserialization

A vulnerability, which was classified as critical, has been found in abhilash1985 PredictApp. This issue affects some unknown processing of the file config/initializers/newframeworkdefaults70.rb of the component Cookie Handler. The manipulation leads to deserialization. The attack may be initiate...

CVE-2022-4890 abhilash1985 PredictApp Cookie new_framework_defaults_7_0.rb deserialization

A vulnerability, which was classified as critical, has been found in abhilash1985 PredictApp. This issue affects some unknown processing of the file config/initializers/newframeworkdefaults70.rb of the component Cookie Handler. The manipulation leads to deserialization. The attack may be initiate...

PT-2023-15901 · Unknown · Abhilash1985 Predictapp

Name of the Vulnerable Software and Affected Versions: abhilash1985 PredictApp affected versions not specified Description: A critical issue has been found in the Cookie Handler component of abhilash1985 PredictApp, affecting the processing of the file config/initializers/new framework defaults 7...

PredictApp 代码问题漏洞

PredictApp is a prediction winner game by the individual developer Abhilash. PredictApp suffers from a code issue vulnerability that stems from some unknown processing in the config/initializers/newframeworkdefaults70.rb file in the component Cookie Handler is faulty, which could be exploited by ...

GHSA-MWVP-QR62-CVJX nsupdate.info has Sensitive Cookie Without 'HttpOnly' Flag

A vulnerability classified as problematic has been found in nsupdate.info. This affects an unknown part of the file src/nsupdate/settings/base.py of the component CSRF Cookie Handler. The manipulation of the argument CSRFCOOKIEHTTPONLY leads to cookie without httponly flag. It is possible to...

nsupdate.info has Sensitive Cookie Without 'HttpOnly' Flag

A vulnerability classified as problematic has been found in nsupdate.info. This affects an unknown part of the file src/nsupdate/settings/base.py of the component CSRF Cookie Handler. The manipulation of the argument CSRFCOOKIEHTTPONLY leads to cookie without httponly flag. It is possible to...

CVE-2019-25091

A vulnerability classified as problematic has been found in nsupdate.info. This affects an unknown part of the file src/nsupdate/settings/base.py of the component CSRF Cookie Handler. The manipulation of the argument CSRFCOOKIEHTTPONLY leads to cookie without 'httponly' flag. It is possible to...

Cross site request forgery (csrf)

A vulnerability classified as problematic has been found in nsupdate.info. This affects an unknown part of the file src/nsupdate/settings/base.py of the component CSRF Cookie Handler. The manipulation of the argument CSRFCOOKIEHTTPONLY leads to cookie without 'httponly' flag. It is possible to...

CVE-2019-25091

nsupdate.info CSRF Cookie Handler (src/nsupdate/settings/base.py) is affected by CVE-2019-25091. The issue arises from manipulating the CSRF_COOKIE_HTTPONLY setting, causing the CSRF/JWT cookie to be set without the HttpOnly flag. This could enable remote manipulation as described in the vulnerab...

Graphite Web Cross-site Scripting vulnerability

A vulnerability has been found in Graphite Web and classified as problematic. This vulnerability affects unknown code of the component Cookie Handler. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used...

GHSA-3C5X-4HVX-QRRR Graphite Web Cross-site Scripting vulnerability

A vulnerability has been found in Graphite Web and classified as problematic. This vulnerability affects unknown code of the component Cookie Handler. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used...

CVE-2022-4728

A vulnerability has been found in Graphite Web and classified as problematic. This vulnerability affects unknown code of the component Cookie Handler. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used...

CVE-2022-4728

A vulnerability has been found in Graphite Web and classified as problematic. This vulnerability affects unknown code of the component Cookie Handler. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used...

DEBIAN-CVE-2022-4728

A vulnerability has been found in Graphite Web and classified as problematic. This vulnerability affects unknown code of the component Cookie Handler. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used...