Browse and filter security vulnerabilities across ecosystems
Browse and filter security vulnerabilities across ecosystems
TwiN gatus OIDC Session Cookie oidc.go setSessionCookie missing secure attribute
Budibase auth session cookies are set with httpOnly:false — any XSS can lead to full account takeover
ChurchCRM has Blind XSS via Global Search – Administrative Cookie Session Exfiltration
ChurchCRM has Stored XSS in Group Name
Rucio WebUI has a Stored Cross-site Scripting (XSS) Vulnerability in its Custom RSE Attribute
Rucio WebUI has a Stored Cross-site Scripting (XSS) vulnerability its Identity Name
Rucio WebUI has Stored Cross-site Scripting (XSS) in RSE Metadata
Rucio WebUI Vulnerable to Stored Cross-site Scripting (XSS) through Custom Rule Function
Rucio WebUI has a Reflected Cross-site Scripting Vulnerability
Session Cookies Missing HttpOnly Attribute
Cookie without HTTPOnly Flag Vulnerability in Tenda Wireless Routers
HTTP Security Misconfiguration - Lacking Secure and HTTPOnly Attribute
Security Misconfiguration vulnerability in SAP Cloud Appliance Library Appliances
Insecure Cookie Flags Vulnerability in Digisol DG-GR6821AC Router
CVE-2025-27453
Cookie missing HttpOnly flag
Stored XSS in CE Phoenix Cart Testimonials Allows Account Takeover if Missing HttpOnly Flag
Dario Health USB-C Blood Glucose Monitoring System Starter Kit Android Application Sensitive Cookie Without 'HttpOnly' Flag
Security Misconfiguration Vulnerability in CP Plus Router
Session Cookie without Secure and HTTPOnly flags in taipy
Showing 1 - 20 of 1,000+ results