If the Quarkus Form Authentication session cookie Path attribute is set to /
then a cross-site attack may be initiated which might lead to the Information Disclosure. This attack can be prevented with the Quarkus CSRF Prevention feature.
[
{
"vendor": "n/a",
"product": "quarkus-vertx-http",
"versions": [
{
"version": "1.11.7",
"status": "affected"
}
]
}
]