Kentico Xperience 安全漏洞

Kentico Xperience is a digital experience platform from Kentico. A security bypass vulnerability exists in Kentico Xperience, which can be exploited by an attacker to cause a compromise of session security and authentication state...

EUVD-2019-13912

Malware in sbrugna...

CVE-2025-53757

This vulnerability exists in Digisol DG-GR6821AC Router due to misconfiguration of both Secure and HttpOnly flags on session cookies associated with the router web interface. A remote attacker could exploit this vulnerability by capturing the session cookies transmitted over an unsecure HTTP...

CVE-2025-24900 Concorde CSRF vulnerability due to insecure configuration of authentication cookie attributes

Concorde, formerly know as Nexkey, is a fork of the federated microblogging platform Misskey. Due to a lack of CSRF countermeasures and improper settings of cookies for MediaProxy authentication, there is a vulnerability that allows MediaProxy authentication to be bypassed. In versions prior to...

MOXA ioLogik 4000 Series 安全漏洞

MOXA ioLogik 4000 Series is a series of general-purpose controllers from China-based MOXA. A security vulnerability exists in MOXA ioLogik 4000 Series v1.6 and earlier versions, which stems from the session cookie attribute not being set correctly, potentially allowing user session data to be...

CVE-2022-22493

IBM WebSphere Automation for Cloud Pak for Watson AIOps 1.4.2 is vulnerable to cross-site request forgery, caused by improper cookie attribute setting. IBM X-Force ID: 226449...

Boozt Fashion AB: Cookie Misconfiguration

Hello, Great Day, I just want to Inform You that i Founded an Misconfiguration in your Website with android app. Steps to Reproduce ==================== 1.Login in to your Website https://www.boozt.com/login 2.Login with same account on android 3.Change Password ion Website 4.As You See That pass...