Limesurvey before 3.17.14 uses an... CVE-2019-16187

- AV AC AU C I A
发布: 2019-09-09
修订: 2019-11-22

Limesurvey before 3.17.14 uses an anti-CSRF cookie without the HttpOnly flag, which allows attackers to access a cookie value via a client-side script.

0%
暂无可用Exp或PoC
产品及版本信息(CPE)暂不可用