Description

Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository thorsten/phpmyfaq prior to 3.1.9.

Remediation

References

CVE-2022-4409

Related Vulnerabilities

WordPress Plugin Snow Monkey Forms Directory Traversal (5.1.1)

Jenkins Improper Certificate Validation Vulnerability (CVE-2017-1000396)

WordPress Plugin Sendit WP Newsletter 'submit.php' Blind SQL Injection (1.5.9)

MySQL CVE-2019-2778 Vulnerability (CVE-2019-2778)

WordPress Plugin Pagination by BestWebSoft Cross-Site Scripting (1.0.6)

Severity

High

Classification

CVE-2022-4409 CWE-319 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities