Description Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository thorsten/phpmyfaq prior to 3.1.9. Remediation References CVE-2022-4409 Related Vulnerabilities PHP Integer Overflow or Wraparound Vulnerability (CVE-2016-7568) WordPress Plugin Inline Call To Action Builder Lite-Free Call To Action Layer for WordPress includes Backdoor [Only if downloaded via the vendor website] (1.1.0) osTicket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-27148) WordPress Plugin Essential Grid Portfolio-Photo Gallery Security Bypass (1.1.2) MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-40601) Severity High Classification CVE-2022-4409 CWE-319 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Tags Missing Update Known Vulnerabilities