Description Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository thorsten/phpmyfaq prior to 3.2.1. Remediation References CVE-2023-5866 Related Vulnerabilities WordPress Plugin Invoicing with InvoiceXpress for WooCommerce-Free Cross-Site Scripting (3.0.2) WordPress Plugin WP Symposium Pro Social Network Cross-Site Scripting (16.01) WordPress Plugin Post Form-Registration Form-Profile Form for User Profiles and Content Forms for User Submissions Security Bypass (2.6.2) Dotclear Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6523) WordPress Plugin Contact Form 7 Multi-Step Forms Security Bypass (3.0.8) Severity Medium Classification CVE-2023-5866 CWE-614 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N Tags Missing Update Known Vulnerabilities