Enviar #622175: Exrick https://github.com/Exrick/xboot <=3.3.4 User's Sensitive Information is included in Cookiesinformación

TítuloExrick https://github.com/Exrick/xboot <=3.3.4 User's Sensitive Information is included in Cookies
DescripciónIn the latest version (v3.3.4) of xboot, there are security flaws in the cookie design. Sensitive user information including uid, username, nickname, mobile, email, address, sex, avatar URL, and birthday are all stored in cookies. If these cookies are compromised, attackers can leverage this information to launch more sophisticated attacks such as brute force attacks, social engineering, and phishing.
Fuente⚠️ https://github.com/Exrick/xboot/issues/69
Usuario
 ZAST.AI (UID 87884)
Sumisión2025-07-25 03:24 (hace 9 meses)
Moderación2025-08-04 08:51 (10 days later)
EstadoAceptado
Entrada de VulDB318654 [Exrick xboot hasta 3.3.4 getMenuList divulgación de información]
Puntos19

AnteriorVisión De ConjuntoPróximo

Might our Artificial Intelligence support you?

Check our Alexa App!