PYSEC-2022-287

See a problem?

Import Source

https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-287.yaml

JSON Data

https://api.osv.dev/v1/vulns/PYSEC-2022-287

Aliases

Published

2022-09-21T17:15:00Z

Modified

2023-11-08T04:09:36.510538Z

Summary

[none]

Details

Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository ikus060/rdiffweb prior to 2.4.6.

References

Affected packages

PyPI / rdiffweb

Package

Name: rdiffweb; View open source insights on deps.dev
Purl: pkg:pypi/rdiffweb

Affected ranges

Type: GIT
Repo: https://github.com/ikus060/rdiffweb
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

ac334dd27ceadac0661b1e2e059a8423433c3fee

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.4.6

Affected versions

0.*

0.9.2.dev1

0.9.3

0.9.4

0.9.5

0.10.0

0.10.2

0.10.3

0.10.4

0.10.5

0.10.6

0.10.7

0.10.8

0.10.9

1.*

1.0.0a1

1.0.0a2

1.0.0a3

1.0.0a4

1.0.0

1.0.1

1.0.2

1.0.3

1.1.0

1.2.0

1.2.1

1.2.2

1.3.0

1.3.1b1

1.3.1b2

1.3.1

1.3.2

1.4.0b1

1.4.0b2

1.4.0b3

1.4.0b4

1.4.0b5

1.4.0

1.4.1b1

1.4.1b2

1.4.1b3

1.5.0

1.5.1b1

1.5.1b2

1.6.0b1

2.*

2.0.1b2

2.0.1b3

2.0.2

2.0.3a1

2.0.3a2

2.0.3a3

2.0.3a4

2.0.3a5

2.0.3a6

2.0.3a7

2.1.0

2.2.0.dev1

2.2.0a1

2.2.0a2

2.2.0a3

2.2.0a4

2.2.0a5

2.2.0a6

2.2.0

2.2.1

2.3.0

2.3.1

2.3.2

2.3.3

2.3.4

2.3.5

2.3.6

2.3.7

2.3.8

2.3.9

2.4.0

2.4.1

2.4.2

2.4.3

2.4.4

2.4.5

Database specific

source

"https://github.com/pypa/advisory-database/blob/main/vulns/rdiffweb/PYSEC-2022-287.yaml"