Description
Joomla! 1.5.8 does not set the secure flag for the session cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session.
Remediation
References
Related Vulnerabilities
WordPress Plugin UpdraftPlus WordPress Backup Multiple Vulnerabilities (1.16.58)
SharePoint Out-of-bounds Write Vulnerability (CVE-2012-2539)
WordPress Plugin Advanced Contact form 7 DB Information Disclosure (1.1.0)
MySQL CVE-2021-35608 Vulnerability (CVE-2021-35608)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-5272)