Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Session Cookie without Secure and HTTPOnly flags in taipy
Vulnerability Description
Taipy is an open-source Python library for easy, end-to-end application development for data scientists and machine learning engineers. In affected versions session cookies are served without Secure and HTTPOnly flags. This issue has been addressed in release version 4.0.0 and all users are advised to upgrade. There are no known workarounds for this vulnerability.
CVSS Information
N/A
Vulnerability Type
HTTPS会话中未设置’Secure’属性的敏感Cookie
Vulnerability Title
Taipy 安全漏洞
Vulnerability Description
Taipy是Avaiga开源的一款应用程序。专为数据科学家和机器学习工程师构建数据和人工智能网络应用程序而设计。 Taipy 4.0.0版本之前存在安全漏洞,该漏洞源于会话 cookie 未使用 Secure 和 HTTPOnly 标志。
CVSS Information
N/A
Vulnerability Type
N/A