Lucene search
K

8 matches found

OSV
OSV
added 2026/02/03 7:16 p.m.2 views

CVE-2025-52633

HCL AION is affected by a Permanent Cookie Containing Sensitive Session Information vulnerability. It is storing sensitive session data in persistent cookies may increase the risk of unauthorized access if the cookies are intercepted or compromised. This issue affects AION: 2.0...

5.3CVSS5.8AI score0.00179EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/03 6:0 p.m.2 views

CVE-2025-52633 HCL AION is susceptible to Missing Content-Security-Policy

HCL AION is affected by a Permanent Cookie Containing Sensitive Session Information vulnerability. It is storing sensitive session data in persistent cookies may increase the risk of unauthorized access if the cookies are intercepted or compromised. This issue affects AION: 2.0...

3.1CVSS5.3AI score0.00179EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2013-0993

Malware in sbrugna...

1.7CVSS6.1AI score0.00337EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2023/06/14 2:39 p.m.4 views

flask: Possible disclosure of permanent session cookie due to missing Vary: Cookie header

A flaw was found in the Python Flask package. A cached response may contain data for one client sent by a proxy to other clients, including session cookies, resulting in the compromise of data confidentiality contained in the leak requests or cookies. This happens when the following conditions ar...

7.5CVSS7.1AI score0.01261EPSS
Exploits1References6
Malwarebytes
Malwarebytes
added 2021/06/09 4:27 p.m.39 views

How to clear cookies

Until the information age, cookies were only known as a tasty but unhealthy snack that some people enjoyed, and others avoided. HTTP cookies, also known as computer, browser, or Internet cookies, are similarly divisive. Although some people like the more personalized browsing experience created b...

0.3AI score
Exploits0
w3af
w3af
added 2013/06/10 11:2 p.m.92 views

csrf

This plugin finds Cross Site Request Forgeries csrf vulnerabilities. The simplest type of csrf is checked to be vulnerable, the web application must have sent a permanent cookie, and the aplicacion must have query string parameters. Plugin type Audit Options This plugin doesnt have any user...

7.1AI score
Exploits0
NVD
NVD
added 2013/06/05 2:39 p.m.27 views

CVE-2013-0982

The Private Browsing feature in CFNetwork in Apple Mac OS X before 10.8.4 does not prevent storage of permanent cookies upon exit from Safari, which might allow physically proximate attackers to bypass cookie-based authentication by leveraging an unattended workstation...

1.7CVSS6.3AI score0.00337EPSS
Exploits0References2
Cvelist
Cvelist
added 2013/06/05 10:0 a.m.30 views

CVE-2013-0982

The Private Browsing feature in CFNetwork in Apple Mac OS X before 10.8.4 does not prevent storage of permanent cookies upon exit from Safari, which might allow physically proximate attackers to bypass cookie-based authentication by leveraging an unattended workstation...

6.2AI score0.00337EPSS
Exploits0References2
Rows per page
Query Builder