cve/CVE-2021-34563.md at 8f32eec229df5ac6033987f6cf2822bfcb07c2e0

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-12-30 04:49:42 +00:00

marc 555e9c7de4 Update Sat May 25 21:48:12 CEST 2024

2024-05-25 21:48:12 +02:00

846 B

Raw Blame History

CVE-2021-34563

Description

In PEPPERL+FUCHS WirelessHART-Gateway 3.0.8 and 3.0.9 the HttpOnly attribute is not set on a cookie. This allows the cookie's value to be read or set by client-side JavaScript.

POC

Reference

https://cert.vde.com/en-us/advisories/vde-2021-027

Github

No PoCs found on GitHub currently.

846 B Raw Blame History

CVE-2021-34563

Description

POC

Reference

Github

846 B

Raw Blame History