CVE-2023-0044

Vulnerability Description

If the Quarkus Form Authentication session cookie Path attribute is set to `/` then a cross-site attack may be initiated which might lead to the Information Disclosure. This attack can be prevented with the Quarkus CSRF Prevention feature.

Vulnerability Details

Published Date

February 23, 2023

Last Modified

November 21, 2024

Source

NVD

CVE-2023-0044

Vulnerability Description

Vulnerability Details

Discussion (0)

Add Comment