CVE-2022-4409

High

Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository thorsten/phpmyfaq prior to 3.1.9.

@huntrdev·CWE-311·Published 2022-12-11

CVSS

7.5

EPSS

0.00

KEV

Exploits

cve.orgen

115 chars

Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository thorsten/phpmyfaq prior to 3.1.9.

NVDen

115 chars

Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository thorsten/phpmyfaq prior to 3.1.9.

OSV.deven

109 chars

phpMyFAQ is contains Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in versions prior to 3.1.9.

GHSAen

109 chars

phpMyFAQ is contains Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in versions prior to 3.1.9.

NVDes

121 chars

Cookie confidencial en sesión HTTPS sin atributo 'seguro' en el repositorio de GitHub thorsten/phpmyfaq anterior a 3.1.9.

Version	Type	Source	Base	Exp	Impact	Vector
3.0	Primary	cve.org	6.3	—	—	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
3.0	Primary	cve.org	6.3	—	—	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L