Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-614

CWE-614

Sensitive Cookie in HTTPS Session Without 'Secure' Attribute

Parent: CWE-319 - Cleartext Transmission of Sensitive Information

The Secure attribute for sensitive cookies in HTTPS sessions is not set.

58 vulnerabilities with CWE-614

CVE-2021-27764 HIGH

HCL BigFix WebUI - Insecure Cookie Permission Assignment

CVE-2021-35236 LOW

Kiwi Syslog Server <9.7.2 - Info Disclosure

CVE-2021-3882 MEDIUM

LedgerSMB 1.8.0-1.8.21 - Sensitive Cookie Without 'Secure' Attribute

CVE-2020-29024 MEDIUM

Secomea GateManager <9.3 - Info Disclosure

CVE-2020-27651 MEDIUM

Synology Router Manager <1.2.4-8081 - Info Disclosure

CVE-2020-27650 MEDIUM

Synology DSM <6.2.3-25426-2 - Info Disclosure

CVE-2018-25060 LOW

go-macaron/csrf < 0.0.0-20180426211050-dadd1711a617 - Sensitive Cookie Without Secure Attribute

CVE-2015-3207 MEDIUM

Openshift Origin 3 - Info Disclosure

Previous Page 3 of 3

Details

Vulnerabilities 58

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy