centreon/centreon uses an insecure cookie configuration. The cookies are not configured to include the HTTPOnly
flag, which would allow attacker to steal HTTP cookie information in the event of a successful cross-site scripting attack.
CPE | Name | Operator | Version |
---|---|---|---|
centreon/centreon | le | 19.10.8 |