Lucene search
GoogleOSV:CVE-2023-5866HistoryOct 31, 2023 - 1:15 a.m.
CVE-2023-5866
2023-10-3101:15:07
Google
osv.dev
3
github
session key
vulnerability
CVSS3
5.7
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N
AI Score
7.1
Confidence
High
EPSS
0.001
Percentile
18.1%
Sensitive Cookie in HTTPS Session Without ‘Secure’ Attribute in GitHub repository thorsten/phpmyfaq prior to 3.2.1.
Related
cve
cve
CVE-2023-5866
2023-10-31 01:15:07
cnvd
cnvd
phpMyFAQ Information Disclosure Vulnerability
2023-11-02 00:00:00
github
github
prion
prion
Session fixation
2023-10-31 01:15:00
cvelist
cvelist
huntr
huntr
Cookie without Secure flag
2023-09-08 14:10:50
vulnrichment
vulnrichment
veracode
veracode
Insecure Session Management
2023-11-01 14:47:44
osv
osv
nvd
nvd
CVE-2023-5866
2023-10-31 01:15:07
openvas
openvas
phpMyFAQ < 3.2.1 Multiple Vulnerabilities
2023-11-02 00:00:00
CVSS3
5.7
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N
AI Score
7.1
Confidence
High
EPSS
0.001
Percentile
18.1%
Related for OSV:CVE-2023-5866