Lucene search
K

4 matches found

OSV
OSV
added 2024/05/15 5:52 p.m.12 views

GHSA-GM98-G2WF-7C68 amphp/artax Cookie leakage to wrong origins and non-restricted cookie acceptance

In artax version before 1.0.6 and 2 before 2.0.6, cookies of foo.bar.example.com were leaked to foo.bar. Additionally, any site could set cookies for any other site. Artax fixed this issue by following newer browser implementations now. Cookies can only be set on domains higher or equal to the...

7AI score
Exploits0References5
Github Security Blog
Github Security Blog
added 2024/05/15 5:52 p.m.12 views

amphp/artax Cookie leakage to wrong origins and non-restricted cookie acceptance

In artax version before 1.0.6 and 2 before 2.0.6, cookies of foo.bar.example.com were leaked to foo.bar. Additionally, any site could set cookies for any other site. Artax fixed this issue by following newer browser implementations now. Cookies can only be set on domains higher or equal to the...

7AI score
Exploits0References5Affected Software1
Friends Of PHP
Friends Of PHP
added 2017/05/09 7:42 p.m.10 views

Cookie leakage to wrong origins and non-restricted cookie acceptance

Security and maintenance release. - Security: Previously cookies of foo.bar.example.com were leaked to foo.bar. Additionally, any site could set cookies for any other site. Artax follows newer browser implementations now. Cookies can only be set on domains higher or equal to the current domain, b...

7AI score
Exploits0Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2017/05/09 12:0 a.m.11 views

Cookie leakage to wrong origins and non-restricted cookie acceptance

Cookie leakage to wrong origins and non-restricted cookie acceptance...

2.3AI score
Exploits0References1Affected Software1
Rows per page
Query Builder