Lucene search
+L

104 matches found

OSV
OSV
added 2024/09/27 6:15 p.m.4 views

CVE-2024-39275

Cookies of authenticated Advantech ADAM-5630 users remain as active valid cookies when a session is closed. Forging requests with a legitimate cookie, even if the session was terminated, allows an unauthorized attacker to act with the same level of privileges of the legitimate user...

8.8CVSS5.8AI score0.00391EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/09/24 12:0 a.m.7 views

Express.js Cookie-Session Weak Secret Key

Express.js applications with Cookie-Session use an application key to encrypt and sign various data, including session cookies and other sensitive information. This key is typically stored in an environment variable and is used for multiple security-critical operations. When a weak or easily...

7.8AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/09/18 12:0 a.m.3 views

PT-2024-6551 · Advantech · Adam-5630

Name of the Vulnerable Software and Affected Versions: Advantech ADAM-5630 affected versions not specified Description: The issue concerns the cookies of authenticated Advantech ADAM-5630 users, which remain active and valid even after a session is closed. This allows an unauthorized attacker to...

8.8CVSS7.1AI score0.00391EPSS
Exploits0References10
CVE
CVE
added 2024/05/16 11:44 a.m.48 views

CVE-2024-4993

Summary: CVE-2024-4993 describes an XSS vulnerability in SiAdmin 1.1 triggered by the /show.php query parameter, which could allow a remote attacker to craft a URL that, when opened by an authenticated user, may lead to cookie session credential leakage. What’s affected: SiAdmin 1.1; vulnerabilit...

6.3CVSS5.7AI score0.00302EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/05/16 11:44 a.m.18 views

CVE-2024-4993 SQL injection vulnerability in SiAdmin

Vulnerability in SiAdmin 1.1 that allows XSS via the /show.php query parameter. This vulnerability could allow a remote attacker to send a specially crafted URL to an authenticated user and thereby steal their cookie session credentials...

6.3CVSS6.1AI score0.00302EPSS
Exploits0References1
Veracode
Veracode
added 2024/05/16 9:21 a.m.24 views

Remote Code Execution (RCE)

laravel/framework is vulnerable to Remote Code Execution RCE. The vulnerability is caused by an encryption oracle exposed by applications using the "cookie" session driver, allowing attackers to craft Laravel session payloads by generating valid signed encryption strings for any plain-text string...

7.8AI score
Exploits0
Github Security Blog
Github Security Blog
added 2024/05/15 10:16 p.m.126 views

Laravel RCE vulnerability in "cookie" session driver

Applications using the "cookie" session driver that were also exposing an encryption oracle via their application were vulnerable to remote code execution. An encryption oracle is a mechanism where arbitrary user input is encrypted and the encrypted string is later displayed or exposed to the use...

8.2AI score
Exploits0References3Affected Software1
OSV
OSV
added 2024/05/15 9:52 p.m.16 views

GHSA-2FFV-R4R9-R8XR Laravel RCE vulnerability in "cookie" session driver

Application's using the "cookie" session driver were the primary applications affected by this vulnerability. Since we have not yet released a security release for the Laravel 5.5 version of the framework, we recommend that all applications running Laravel 5.5 and earlier do not use the "cookie"...

8.1AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/05/15 12:0 a.m.11 views

PT-2024-40434 · Laravel · Laravel

Name of the Vulnerable Software and Affected Versions: Laravel affected versions not specified Description: The issue concerns applications that use the "cookie" session driver and expose an encryption oracle, allowing for remote code execution. An encryption oracle is a mechanism where arbitrary...

9.9CVSS7.9AI score
Exploits0References4
OSV
OSV
added 2024/02/23 11:7 a.m.2 views

OESA-2024-1191 mod_auth_openidc security update

This module enables an Apache 2.x web server to operate as an OpenID Connect Relying PartyRP to an OpenID Connect ProviderOP. Security Fixes: modauthopenidc is an OpenID Certified™ authentication and authorization module for the Apache 2.x HTTP server that implements the OpenID Connect Relying...

7.5CVSS7AI score0.01261EPSS
Exploits1References2
Exploit DB
Exploit DB
added 2024/02/05 12:0 a.m.378 views

TASKHUB-2.8.8 - XSS-Reflected

Title: TASKHUB-2.8.8-XSS-Reflected Author: nu11secur1ty Date: 09/22/2023 Vendor: https://codecanyon.net/user/infinitietech Software: https://codecanyon.net/item/taskhub-project-management-finance-crm-tool/25685874 Reference: https://portswigger.net/web-security/cross-site-scripting Description: T...

7.4AI score
Exploits0
Cvelist
Cvelist
added 2023/11/20 11:20 p.m.19 views

CVE-2023-6144 Dev Blog v1.0 - ATO

Dev blog v1.0 allows to exploit an account takeover through the "user" cookie. With this, an attacker can access any user's session just by knowing their username...

9.1CVSS9.3AI score0.00448EPSS
Exploits1References2
NVD
NVD
added 2023/11/03 12:15 p.m.14 views

CVE-2023-4592

A Cross-Site Scripting vulnerability has been detected in WPN-XM Serverstack affecting version 0.8.6. This vulnerability could allow a remote attacker to send a specially crafted JavaScript payload through the /tools/webinterface/index.php parameter and retrieve the cookie session details of an...

6.1CVSS6AI score0.00424EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/10/26 4:15 p.m.11 views

CVE-2023-42769 Sielco Radio Link and Analog FM Transmitters Improper Access Control

The cookie session ID is of insufficient length and can be exploited by brute force, which may allow a remote attacker to obtain a valid session, bypass authentication, and manipulate the transmitter...

9.8CVSS7.2AI score0.00787EPSS
Exploits2References2
Cvelist
Cvelist
added 2023/10/26 4:15 p.m.50 views

CVE-2023-42769 Sielco Radio Link and Analog FM Transmitters Improper Access Control

The cookie session ID is of insufficient length and can be exploited by brute force, which may allow a remote attacker to obtain a valid session, bypass authentication, and manipulate the transmitter...

9.8CVSS9.6AI score0.00787EPSS
Exploits2References2
CVE
CVE
added 2023/10/26 4:15 p.m.53 views

CVE-2023-42769

CVE-2023-42769 affects Sielco Radio Link and Analog FM Transmitters. The issue is the cookie session ID length is insufficient, enabling brute-force to obtain a valid session, bypass authentication, and manipulate the transmitter. Affected products include multiple Sielco Analog FM Transmitters a...

9.8CVSS9.4AI score0.00787EPSS
Exploits2References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/10/26 12:0 a.m.6 views

PT-2023-28579 · Softwarex · Softwarex

Name of the Vulnerable Software and Affected Versions: SoftwareX affected versions not specified Description: The issue is related to the cookie session ID being of insufficient length, making it vulnerable to brute force attacks. This could allow a remote attacker to obtain a valid session, bypa...

9.8CVSS9.1AI score0.00787EPSS
Exploits2References6
CNNVD
CNNVD
added 2023/10/26 12:0 a.m.6 views

Sielco Analog FM Transmitters Security Vulnerability

Sielco Analog FM Transmitters is an analog FM transmitter from Sielco. A security vulnerability exists in Sielco Analog FM Transmitters that stems from an insufficient cookie session ID length that can be brute-force broken, allowing a remote attacker to obtain a valid session and bypass...

9.8CVSS6.8AI score0.00787EPSS
Exploits2References4
Packet Storm
Packet Storm
added 2023/09/22 12:0 a.m.385 views

Taskhub 2.8.8 Cross Site Scripting

Title: TASKHUB-2.8.8-XSS-Reflected Author: nu11secur1ty Date: 09/22/2023 Vendor: https://codecanyon.net/user/infinitietech Software: https://codecanyon.net/item/taskhub-project-management-finance-crm-tool/25685874 Reference: https://portswigger.net/web-security/cross-site-scripting Description: T...

7.1AI score
Exploits0
Veracode
Veracode
added 2023/07/17 7:48 a.m.16 views

Cross-Site Request Forgery (CSRF)

@vendure/core is vulnerable to Cross-Site Request Forgery CSRF. The vulnerability exists in the defaultConfig because the cookie-session middleware is set to false which in most browsers is interpreted as the secure lax option, but in old browsers gets interpreted as the least secure option, whic...

6.8AI score
Exploits0
Rows per page
Query Builder