Submit #263242: Engineers Online Portal Web 1.0 HTTPOnly and Secure Flag not set to Trueinfo

TitleEngineers Online Portal Web 1.0 HTTPOnly and Secure Flag not set to True
DescriptionDear Janno palacios, I hope this message finds you well. I would like to express my gratitude for your valuable time and attention. My brother and I have successfully identified a medium-level vulnerability, "HTTPOnly and Secure Flag not set to True", within your Engineers Online Portal Application. Consequently, I am writing this email to provide you with a comprehensive Proof of Concept, including a video demonstration and relevant screenshots. Furthermore, I would like to kindly request your consideration in assigning a CVE identifier to this discovery. I have attached a previous example for the same application for your reference. Link for the previous CVE https://vuldb.com/?id.249182 Thank you once again for your time, and I look forward to your response. Sincerely, Ahmed Hassan
Source⚠️ https://mega.nz/file/TU1X3TIQ#7bPvxEP0KrdoDZVg-dqinNC5fEQrG5uu58jWzPGh904
User
 ahmed8199 (UID 60803)
Submission01/06/2024 16:33 (2 years ago)
Moderation01/09/2024 15:14 (3 days later)
StatusAccepted
VulDB entry250117 [SourceCodester Engineers Online Portal 1.0 missing secure attribute]
Points20

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!