Lucene search
K

5 matches found

Positive Technologies
Positive Technologies
added 2026/05/11 12:0 a.m.25 views

PT-2026-39727

Name of the Vulnerable Software and Affected Versions cowlib versions 2.9.0 and later Description Improper Neutralization of CRLF Sequences CRLF Injection occurs when the cow cookie:cookie/1 function builds a client-side Cookie request header from name-value pairs without validating the fields. A...

3.2CVSS5.9AI score0.00145EPSS
Exploits0References9
CNNVD
CNNVD
added 2024/06/27 12:0 a.m.3 views

Elektraweb Security Vulnerabilities

Elektraweb is a cloud-hosted web-based hotel program from Elektraweb, Turkey. A security vulnerability exists in Elektraweb versions prior to v17.0.68, which stems from reliance on unvalidated and integrity-checked cookies, which allows an attacker to manipulate, access/intercept/modify HTTP...

9.8CVSS6.8AI score0.00477EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/06/13 12:15 p.m.3 views

CVE-2023-3050

Reliance on Cookies without Validation and Integrity Checking in a Security Decision vulnerability in TMT Lockcell allows Privilege Abuse, Authentication Bypass. This issue affects Lockcell: before 15...

9.8CVSS7.3AI score0.01314EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2023/06/13 12:0 a.m.10 views

PT-2023-22736

Name of the Vulnerable Software and Affected Versions TMT Lockcell versions prior to 15 Description The issue is related to the reliance on cookies without validation and integrity checking in a security decision, which allows for privilege abuse and authentication bypass. Recommendations For...

9.8CVSS7.3AI score0.01314EPSS
Exploits1References7
Veracode
Veracode
added 2019/08/27 5:54 a.m.19 views

Remote Code Execution

spoon/library is vulnerable to remote code execution. Lack of validation of the cookie allows a remote attacker to submit a cookie containing malicious executable objects that will execute upon deserialization in the wakeup magic method in spoon/cookie/cookie.php...

9.8CVSS5AI score0.02482EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder