← Back to CVE List
CVE-2018-12302
Published:
2019-05-13T13:29Z
Last Modified:
2024-11-21T03:44Z
Source:
MITRE CVE List
License:
MITRE-CVE-TOS
Missing HTTPOnly flag on session cookies in the Seagate NAS OS version 4.3.15.1 web application allows attackers to steal session tokens via cross-site scripting. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt