Description Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository thorsten/phpmyfaq prior to 3.2.1. Remediation References CVE-2023-5866 Related Vulnerabilities WordPress Plugin Copify Cross-Site Request Forgery (1.3.0) WordPress Plugin Yandex Money button Cross-Site Scripting (2.3.3) Joomla Incorrect Authorization Vulnerability (CVE-2023-23751) WordPress Plugin Duplicator-WordPress Migration Cross-Site Scripting (0.4.4) Gunicorn Improper Neutralization of CRLF Sequences ('CRLF Injection') Vulnerability (CVE-2018-1000164) Severity Medium Classification CVE-2023-5866 CWE-614 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N Tags Missing Update Known Vulnerabilities