Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cookie without Secure attribute in phpipam/phpipam
Vulnerability Description
In phpipam/phpipam version 1.5.1, the Secure attribute for sensitive cookies in HTTPS sessions is not set. This could cause the user agent to send those cookies in plaintext over an HTTP session, potentially exposing sensitive information. The issue is fixed in version 1.7.0.
CVSS Information
N/A
Vulnerability Type
HTTPS会话中未设置’Secure’属性的敏感Cookie
Vulnerability Title
phpIPAM 安全漏洞
Vulnerability Description
phpIPAM是phpIPAM开源的一套开源的基于PHP和MySQL的IP地址管理应用程序(IPAM)。 phpIPAM 1.5.1版本存在安全漏洞,该漏洞源于HTTPS会话中敏感cookie的Secure属性未设置,可能导致用户代理在HTTP会话中以明文发送这些cookie,从而暴露敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A