Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

mercredi 25 novembre 2020

SimplePHPscripts News Script PHP Pro 2.3 Session Cookie cookie without 'httponly' flag

A vulnerability was found in SimplePHPscripts News Script PHP Pro 2.3 (Programming Language Software). It has been classified as problematic. Affected is some unknown processing of the component Session Cookie Handler. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Lien vers l'article source

Auteur: VulDB

Catégories: VulDBNombre de vues: 78


Événements SSI