CVE-2019-25091

nsupdate.info CSRF Cookie base.py cookie httponly flag

CVSS 3.7 LOWEPSS 0.6%CWE-1004

In short

The nsupdate.info website's CSRF protection cookie was missing the 'httponly' flag, which allows JavaScript code to access it. This increases the risk of cookie theft through cross-site scripting attacks.

Technical detail

The CSRF_COOKIE_HTTPONLY setting in src/nsupdate/settings/base.py was not properly configured, allowing CSRF protection cookies to be accessible via JavaScript. An attacker exploiting XSS vulnerabilities could steal session tokens. The issue was patched in commit 60a3fe559c453bc36b0ec3e5dd39c1303640a59a.

Summary generated and translated by AI from the official description.

A vulnerability classified as problematic has been found in nsupdate.info. This affects an unknown part of the file src/nsupdate/settings/base.py of the component CSRF Cookie Handler. The manipulation of the argument CSRF_COOKIE_HTTPONLY leads to cookie without 'httponly' flag. It is possible to initiate the attack remotely. The name of the patch is 60a3fe559c453bc36b0ec3e5dd39c1303640a59a. It is recommended to apply a patch to fix this issue. The identifier VDB-216909 was assigned to this vulnerability.

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

Affected products

n/a · nsupdate.info

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/nsupdate-info/nsupdate.info/commit/60a3fe559c453bc36b0ec3e5dd39c1303640a59a https://github.com/nsupdate-info/nsupdate.info/pull/410 https://vuldb.com/?ctiid.216909 https://vuldb.com/?id.216909