Lucene search
K

16 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 11:43 a.m.7 views

CVE-2025-0479

This vulnerability exists in the CP Plus Router due to insecure handling of cookie flags used within its web interface. A remote attacker could exploit this vulnerability by intercepting data transmissions during an HTTP session on the vulnerable system. Successful exploitation of this...

8.6CVSS6.4AI score0.00422EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2021/04/06 12:0 a.m.5 views

The vulnerability of the PHP programming language’s cookie processing mechanism allows attackers to compromise data integrity.

The vulnerability of the PHP programming language’s cookie handling mechanism is related to the reliance on cookie files without any checks for their authenticity and integrity. Exploiting this vulnerability allows a remote attacker to compromise the integrity of data...

5.3CVSS6.8AI score0.05029EPSS
Exploits1References19Affected Software9
Prion
Prion
added 2020/10/02 3:15 p.m.40 views

Information disclosure

In PHP versions 7.2.x below 7.2.34, 7.3.x below 7.3.23 and 7.4.x below 7.4.11, when PHP is processing incoming HTTP cookie values, the cookie names are url-decoded. This may lead to cookies with prefixes like Host confused with cookies that decode to such prefix, thus leading to an attacker being...

5CVSS6.2AI score0.05029EPSS
Exploits2References15Affected Software6
OSV
OSV
added 2018/05/16 8:24 a.m.9 views

MGASA-2018-0244 Updated wget packages fix security vulnerabilities

Harry Sintonen discovered that wget does not properly handle '\r\n' from continuation lines while parsing the Set-Cookie HTTP header. A malicious web server could use this flaw to inject arbitrary cookies to the cookie jar file, adding new or replacing existing cookie values CVE-2018-0494. The...

6.5CVSS6.7AI score0.17249EPSS
Exploits5References4
FreeBSD
FreeBSD
added 2018/01/31 12:0 a.m.14 views

p5-Mojolicious -- cookie-handling vulnerability

Upstream commit: Vulnerabilities existed in cookie handling...

7AI score
Exploits0References1
0day.today
0day.today
added 2010/02/17 12:0 a.m.25 views

[whem]-UPLoad - v 7.0 Insecure Cookie Handling Vulnerability

Exploit for unknown platform in category web applications ============================================================ whem-UPLoad - v 7.0 Insecure Cookie Handling Vulnerability ============================================================...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2010/02/16 12:0 a.m.43 views

UPLoad 7.0 Insecure Cookie Handling

======================================================================================== | Title : whem-UPLoad - v 7.0 Insecure Cookie Handling Vulnerability | Author : indoushka | email : [email protected] | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -00213771818860 | | Web Site :...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2009/12/26 12:0 a.m.22 views

dB Masters Multimedia Insecure Cookie Handling Vulnerability

No description provided by source. ======================================================================================== | Title : dB Masters Multimedia Insecure Cookie Handling Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2009/07/23 12:0 a.m.25 views

Valentina Cookie Handling Privilege Escalation

Cyber-Warrior & Security TIM - Bug Researchers Group Application Name : Valentina Vulnerable Type : Cookie Handling Vulnerebility Infection : SQL Info GET... Author : Septemb0x Script Down.& WebSite : http://s2.dosya.tc/valentina.zip.html - http://www.valya.ru Cyber-Warrior & Security TIM - Bug...

1.3AI score
Exploits0
Exploit DB
Exploit DB
added 2009/02/03 12:0 a.m.33 views

WholeHogSoftware Password Protect - Insecure Cookie Handling

WholeHogSoftware Password Protect Insecure Cookie Handling Vulnerability + Script :Password Protect + Site :http://wholehogsoftware.com + Detay :http://www.wholehogsoftware.com/index.php/page/passwordprotectenhanced + Discovered By Mountassif Moad + www.v4-team.com + Greetz : All my Freind...

7.4AI score
Exploits0
0day.today
0day.today
added 2008/11/07 12:0 a.m.28 views

turnkeyforms Entertainment Portal 2.0 Insecure Cookie Handling Vuln

Exploit for unknown platform in category web applications =================================================================== turnkeyforms Entertainment Portal 2.0 Insecure Cookie Handling Vuln ===================================================================...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2008/11/07 12:0 a.m.20 views

turnkeyforms Entertainment Portal 2.0 Insecure Cookie Handling Vuln

No description provided by source. ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || || ==============================================================================...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2008/11/04 12:0 a.m.24 views

joovili-insecure.txt

Joovili Script Insecure Cookie Handling Vulnerability version: 3.1.4 ---------------------------------------------------------- Discovered By: ZoRLu Date: 02.11.2008 Home: www.z0rlu.blogspot.com contact: [email protected] N0T: YALNIZLIK, YiTiRDi ANLAMINI YALNIZLIGIMDA : N0T: a.q kpss :...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2008/10/17 12:0 a.m.29 views

PokerMax Poker League Insecure Cookie Handling Vulnerability

No description provided by source. Author : DaRkLiFe Greetz : str0ke & S.W.A.T. & funkys0ul Script : PokerMax Poker League Insecure Cookie Handling Vulnerability Download: http://www.stevedawson.com/downloads/pokerleague.zip Exploit : javascript:document.cookie = "ValidUserAdmin=admin"; here...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2008/09/27 12:0 a.m.16 views

Libra PHP File Manager <= 1.18 Insecure Cookie Handling Vulnerability

No description provided by source. + Libra PHP File Manager Insecure Cookie Handling Vulnerability + Discovered By Stack + Greetz : All my freind --- exploit: javascript:document.cookie = "user=1; path=/"; document.cookie = "pass=1; path=/";...

7.1AI score
Exploits0
0day.today
0day.today
added 2008/09/26 12:0 a.m.22 views

Esqlanelapse Software Project <= 2.6.2 Insecure Cookie Handling Vuln

Exploit for unknown platform in category web applications ==================================================================== Esqlanelapse Software Project = 2.6.2 Insecure Cookie Handling Vuln ==================================================================== Esqlanelapse Software Project...

7.1AI score
Exploits0
Rows per page
Query Builder