Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2016-2304

Ecava IntegraXor before 5.0 build 4522 does not include the HTTPOnly flag in a Set-Cookie header for the session cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 48.0%
CVSS Severity
CVSS v3 Score 4.3
CVSS v2 Score 4.3
Products affected by CVE-2016-2304
  • Ecava » Integraxor » Version: 3.5.3900.10
    cpe:2.3:a:ecava:integraxor:3.5.3900.10
  • Ecava » Integraxor » Version: 3.5.3900.5
    cpe:2.3:a:ecava:integraxor:3.5.3900.5
  • Ecava » Integraxor » Version: 3.6.4000.0
    cpe:2.3:a:ecava:integraxor:3.6.4000.0
  • Ecava » Integraxor » Version: 3.60.4061
    cpe:2.3:a:ecava:integraxor:3.60.4061
  • Ecava » Integraxor » Version: 3.71
    cpe:2.3:a:ecava:integraxor:3.71
  • Ecava » Integraxor » Version: 3.71.4200
    cpe:2.3:a:ecava:integraxor:3.71.4200
  • Ecava » Integraxor » Version: 3.72
    cpe:2.3:a:ecava:integraxor:3.72
  • Ecava » Integraxor » Version: 4.00
    cpe:2.3:a:ecava:integraxor:4.00
  • Ecava » Integraxor » Version: 4.1
    cpe:2.3:a:ecava:integraxor:4.1
  • Ecava » Integraxor » Version: 4.1.4340
    cpe:2.3:a:ecava:integraxor:4.1.4340
  • Ecava » Integraxor » Version: 4.1.4360
    cpe:2.3:a:ecava:integraxor:4.1.4360
  • Ecava » Integraxor » Version: 4.1.4369
    cpe:2.3:a:ecava:integraxor:4.1.4369
  • Ecava » Integraxor » Version: 4.1.4380
    cpe:2.3:a:ecava:integraxor:4.1.4380
  • Ecava » Integraxor » Version: 4.1.4390
    cpe:2.3:a:ecava:integraxor:4.1.4390
  • Ecava » Integraxor » Version: 4.1.4393
    cpe:2.3:a:ecava:integraxor:4.1.4393
  • Ecava » Integraxor » Version: 4.1.4450
    cpe:2.3:a:ecava:integraxor:4.1.4450
  • Ecava » Integraxor » Version: 4.2.4502
    cpe:2.3:a:ecava:integraxor:4.2.4502


Products
Pricing
Contact Us

Shodan ® - All rights reserved