Lucene search
K

4 matches found

RedHat Linux
RedHat Linux
added 2023/05/16 9:8 a.m.4 views

php: standard insecure cookie could be treated as a '__Host-' or '__Secure-' cookie by PHP applications

A vulnerability was found in PHP due to the way PHP handles HTTP variable names. It interferes with HTTP variable names that clash with ones that have a specific semantic meaning. This vulnerability allows network and same-site attackers to set a standard insecure cookie in the victim's browser,...

6.5CVSS7.3AI score0.49336EPSS
Exploits2References5
OSV
OSV
added 2022/11/11 2:10 p.m.8 views

SUSE-SU-2022:3957-1 Security update for php72

This update for php72 fixes the following issues: - CVE-2022-31628: Fixed an uncontrolled recursion in the phar uncompressor while decompressing 'quines' gzip files. bsc1203867 - CVE-2022-31629: Fixed a bug which could lead an attacker to set an insecure cookie that will treated as secure in the...

6.5CVSS6.4AI score0.49336EPSS
Exploits2References5
Packet Storm
Packet Storm
added 2009/04/28 12:0 a.m.19 views

Teraway LinkTracker 1.0 Insecure Cookie

-------------------------------------+ Homepage:http://www.teraway.com Product: Teraway LinkTracker V1.0 home:www.h4ckf0ru.com Note: Hawach x.CJP.x Ballk Ma tedirech Ihdae Note: سال الممكن المستحيل اين تقيم قال في احلام العاجز ------------------------------------- Teraway LinkTracker V1.0 Insecur...

0.7AI score
Exploits0
Exploit DB
Exploit DB
added 2008/10/31 12:0 a.m.31 views

Absolute News Feed 1.0 - Remote Insecure Cookie Handling

Discovered by : Hakxer Script : Absolute News Feed http://www.xigla.com/absolutenf/demo.htm Greetz : Allah , All My friend ,www.educ-up.com ------------------------------- Poc : javascript:document.cookie="xlaAFSuser=p=admin"; Exploit Go To admin login :...

7.4AI score
Exploits0
Rows per page
Query Builder