Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in bytebase/bytebase

Valid

Reported on

Oct 11th 2021

Description

Session cookie is not marked with 'Secure'

Proof of Concept 

Login to demo page  https://demo.bytebase.com/

Open Firefox developer option  -> storage -> check secure option

Below link shows POC

https://i.ibb.co/DLG1pyt/Screenshot-48.png

References

https://owasp.org/www-project-secureflag-open-platform/

We created a GitHub Issue asking the maintainers to create a SECURITY.md a year ago

We have contacted a member of the bytebase team and are waiting to hear back a year ago

A bytebase/bytebase maintainer validated this vulnerability a year ago

@0xAmal has been awarded the disclosure bounty

The fix bounty is now up for grabs

A bytebase/bytebase maintainer marked this as fixed with commit 190d3d a year ago

The fix bounty has been dropped

This vulnerability will not receive a CVE

to join this conversation