CVE-2019-19739

MFScripts YetiShare 3.5.2 through 4.5.3 does not set the Secure flag on session cookies, allowing the cookie to be sent over cleartext channels.
Configurations

Configuration 1

cpe:2.3:a:mfscripts:yetishare:*:*:*:*:*:*:*:*

Information

Published : 2019-12-30 05:15

Updated : 2020-08-24 05:37


NVD link : CVE-2019-19739

Mitre link : CVE-2019-19739

Products Affected
No products.
CWE
CWE-311

Missing Encryption of Sensitive Data