Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
1Panel set-cookie is missing the Secure keyword
Vulnerability Description
1Panel is an open source Linux server operation and maintenance management panel. The HTTPS cookie that comes with the panel does not have the Secure keyword, which may cause the cookie to be sent in plain text if accessed using HTTP. This issue has been patched in version 1.9.6.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L
Vulnerability Type
在Cookie中的明文存储
Vulnerability Title
1Panel 安全漏洞
Vulnerability Description
1Panel是中国1panel社区的一个开源的Linux服务器运维管理面板。 1Panel存在安全漏洞,该漏洞源于一旦使用 HTTP 访问,会导致 cookie 以纯文本形式发送。
CVSS Information
N/A
Vulnerability Type
N/A