Lucene search
K

89 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-1042

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.03041EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-7673

Malicious code in bioql PyPI...

6.1CVSS5.5AI score0.00591EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/05/22 1:29 p.m.4 views

CVE-2018-25060

A vulnerability was found in Macaron csrf and classified as problematic. Affected by this issue is some unknown functionality of the file csrf.go. The manipulation of the argument Generate leads to sensitive cookie without secure attribute. The attack may be launched remotely. The complexity of a...

7.5CVSS6.7AI score0.00515EPSS
Exploits0References1
OSV
OSV
added 2025/03/19 2:42 p.m.4 views

MAL-2025-2600 Malicious code in bsb-family-pack (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: oracle-using-macaron 9ce94b3baee18c22e6c4de9808764de9496aa7a055a74f58eb972741ac433181 This package seems to be part of a larger malicious toolkit designed for unauthorized access to systems, data theft, and potentially acting as a...

7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2020-36627

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in Macaron i18n. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file i18n.go...

6.1CVSS4.6AI score0.00591EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2018-25060

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in Macaron csrf and classified as problematic. Affected by this issue is some unknown functionality of the file csrf.go. The...

7.5CVSS4.3AI score0.00515EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2024/09/10 12:0 a.m.9 views

Fedora: Security Advisory (FEDORA-2023-7398c7b4db)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS6.4AI score0.00591EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.18 views

Fedora 39 : golang-github-macaron-inject (2023-7398c7b4db)

The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-7398c7b4db advisory. Automatic update for golang-github-macaron-inject-0-0.19.20210110git138e592.fc39. Changelog Tue Jul 11 2023 Mikel Olasagasti Uranga - 0-0.19 - Fix FTBFS...

6.1CVSS5.7AI score0.00591EPSS
Exploits0References2
Veracode
Veracode
added 2023/01/12 2:18 a.m.13 views

Cross-site Request Forgery (CSRF)

github.com/go-macaron/csrf is vulnerable to Cross-site Request Forgery CSRF. The vulnerability exists because the Generate function in csrf.go does not set the secure mode for the CSRF cookie as the value is hardcoded to false for the corresponding arguments of SetCookie, allowing an attacker to...

7.5CVSS3.2AI score0.00515EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2023/01/03 11:5 p.m.41 views

GO-2022-1213 Insecure generation of cookies in github.com/go-macaron/csrf

The Options.Secure value is ignored, and cookies created by Generate never have the secure attribute...

7.5CVSS7.4AI score0.00515EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2022/12/30 12:30 p.m.13 views

Macaron csrf missing encryption and has sensitive cookies in HTTP session without secure attribute

A vulnerability was found in Macaron csrf and classified as problematic. Affected by this issue is some unknown functionality of the file csrf.go. The manipulation of the argument Generate leads to sensitive cookie without secure attribute. The attack may be launched remotely. The name of the pat...

7.5CVSS0.9AI score0.00515EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2022/12/30 12:30 p.m.17 views

GHSA-HHXG-PX5H-JC32 Macaron csrf missing encryption and has sensitive cookies in HTTP session without secure attribute

A vulnerability was found in Macaron csrf and classified as problematic. Affected by this issue is some unknown functionality of the file csrf.go. The manipulation of the argument Generate leads to sensitive cookie without secure attribute. The attack may be launched remotely. The name of the pat...

7.5CVSS7.4AI score0.00515EPSS
Exploits0References7
OSV
OSV
added 2022/12/30 12:15 p.m.4 views

DEBIAN-CVE-2018-25060

A vulnerability was found in Macaron csrf and classified as problematic. Affected by this issue is some unknown functionality of the file csrf.go. The manipulation of the argument Generate leads to sensitive cookie without secure attribute. The attack may be launched remotely. The complexity of a...

7.5CVSS3.8AI score0.00515EPSS
Exploits0References1
NVD
NVD
added 2022/12/30 12:15 p.m.19 views

CVE-2018-25060

A vulnerability was found in Macaron csrf and classified as problematic. Affected by this issue is some unknown functionality of the file csrf.go. The manipulation of the argument Generate leads to sensitive cookie without secure attribute. The attack may be launched remotely. The complexity of a...

7.5CVSS0.00515EPSS
Exploits0References4
OSV
OSV
added 2022/12/30 12:15 p.m.9 views

CVE-2018-25060

A vulnerability was found in Macaron csrf and classified as problematic. Affected by this issue is some unknown functionality of the file csrf.go. The manipulation of the argument Generate leads to sensitive cookie without secure attribute. The attack may be launched remotely. The complexity of a...

7.5CVSS7.5AI score
Exploits0References4
UbuntuCve
UbuntuCve
added 2022/12/30 12:15 p.m.21 views

CVE-2018-25060

A vulnerability was found in Macaron csrf and classified as problematic. Affected by this issue is some unknown functionality of the file csrf.go. The manipulation of the argument Generate leads to sensitive cookie without secure attribute. The attack may be launched remotely. The complexity of a...

7.5CVSS5.5AI score0.00515EPSS
Exploits0References2
Prion
Prion
added 2022/12/30 12:15 p.m.12 views

Design/Logic Flaw

A vulnerability was found in Macaron csrf and classified as problematic. Affected by this issue is some unknown functionality of the file csrf.go. The manipulation of the argument Generate leads to sensitive cookie without secure attribute. The attack may be launched remotely. The complexity of a...

5CVSS7.4AI score0.00515EPSS
Exploits0References4
OSV
OSV
added 2022/12/30 12:15 p.m.4 views

UBUNTU-CVE-2018-25060

A vulnerability was found in Macaron csrf and classified as problematic. Affected by this issue is some unknown functionality of the file csrf.go. The manipulation of the argument Generate leads to sensitive cookie without secure attribute. The attack may be launched remotely. The complexity of a...

7.5CVSS4.4AI score0.00515EPSS
Exploits0References3
CVE
CVE
added 2022/12/30 11:47 a.m.93 views

CVE-2018-25060

CVE-2018-25060 affects the Macaron csrf component (go-macaron/csrf) via the csrf.go Generate path. Affects cookies created by Generate: the Secure attribute is not applied, allowing cookies to be sent over non-SSL connections. The vulnerability can be exploited remotely; the attack complexity is ...

7.5CVSS5.6AI score0.00515EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2022/12/30 11:47 a.m.32 views

CVE-2018-25060 Macaron csrf csrf.go missing secure attribute

A vulnerability was found in Macaron csrf and classified as problematic. Affected by this issue is some unknown functionality of the file csrf.go. The manipulation of the argument Generate leads to sensitive cookie without secure attribute. The attack may be launched remotely. The complexity of a...

3.7CVSS7.5AI score0.00515EPSS
Exploits0References4
Rows per page
Query Builder