Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In JetBrains Datalore before 2026.1 session hijacking was possible due to missing secure attribute for cookie settings
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N
Vulnerability Type
HTTPS会话中未设置’Secure’属性的敏感Cookie
Vulnerability Title
JetBrains Datalore 安全漏洞
Vulnerability Description
JetBrains Datalore是捷克JetBrains公司的一个协作式数据科学平台。 JetBrains Datalore 2026.1之前版本存在安全漏洞,该漏洞源于Cookie设置缺少安全属性,可能导致会话劫持。
CVSS Information
N/A
Vulnerability Type
N/A