Vulnerabilities > Reliance on Cookies without Validation and Integrity Checking

DATE CVE VULNERABILITY TITLE RISK
2022-06-29 CVE-2021-40642 Reliance on Cookies without Validation and Integrity Checking vulnerability in Textpattern
Textpattern CMS v4.8.7 and older vulnerability exists through Sensitive Cookie in HTTPS Session Without 'Secure' Attribute via textpattern/lib/txplib_misc.php.
4.3
2022-06-09 CVE-2016-15002 Reliance on Cookies without Validation and Integrity Checking vulnerability in Ideracorp Webyog Monyog Ultimate 6.63
A vulnerability, which was classified as critical, was found in MONyog Ultimate 6.63.
network
low complexity
ideracorp CWE-565
6.5
2022-05-18 CVE-2022-22785 Reliance on Cookies without Validation and Integrity Checking vulnerability in Zoom Meetings
The Zoom Client for Meetings (for Android, iOS, Linux, MacOS, and Windows) before version 5.10.0 failed to properly constrain client session cookies to Zoom domains.
network
low complexity
zoom CWE-565
6.4
2022-04-15 CVE-2022-28113 Reliance on Cookies without Validation and Integrity Checking vulnerability in Fantec Mwid25-Ds Firmware 2.000.030
An issue in upload.csp of FANTEC GmbH MWiD25-DS Firmware v2.000.030 allows attackers to write files and reset the user passwords without having a valid session cookie.
network
low complexity
fantec CWE-565
critical
9.0
2022-02-16 CVE-2021-46388 Reliance on Cookies without Validation and Integrity Checking vulnerability in Wago 750-8212 Pfc200 G2 2Eth RS Firmware 03.05.10(17)
** DISPUTED ** WAGO 750-8212 PFC200 G2 2ETH RS Firmware version 03.05.10(17) is affected by a privilege escalation vulnerability.
network
low complexity
wago CWE-565
critical
9.0
2022-01-01 CVE-2021-41819 Reliance on Cookies without Validation and Integrity Checking vulnerability in multiple products
CGI::Cookie.parse in Ruby through 2.6.8 mishandles security prefixes in cookie names.
5.0
2021-11-15 CVE-2021-41263 Reliance on Cookies without Validation and Integrity Checking vulnerability in Discourse Rails Multisite
rails_multisite provides multi-db support for Rails applications.
network
discourse CWE-565
6.0
2021-09-27 CVE-2021-3818 Reliance on Cookies without Validation and Integrity Checking vulnerability in Getgrav Grav
grav is vulnerable to Reliance on Cookies without Validation and Integrity Checking
network
low complexity
getgrav CWE-565
5.0
2021-05-19 CVE-2021-29624 Reliance on Cookies without Validation and Integrity Checking vulnerability in Fastify Fastify-Csrf
fastify-csrf is an open-source plugin helps developers protect their Fastify server against CSRF attacks.
network
fastify CWE-565
4.3
2021-04-06 CVE-2021-28171 Reliance on Cookies without Validation and Integrity Checking vulnerability in Deltaflow Project Deltaflow
The Vangene deltaFlow E-platform does not take properly protective measures.
network
low complexity
deltaflow-project CWE-565
7.5