Sensitive Cookie Without HttpOnly Flag in GitHub repository lirantal/daloradius prior to master.
The product uses a cookie to store sensitive information, but the cookie is not marked with the HttpOnly flag.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Daloradius | Daloradius | - (including) | - (including) |