CVE-2021-42699

The affected product is vulnerable to cookie information being transmitted as cleartext over HTTP. An attacker can capture network traffic, obtain the user’s cookie and take over the account. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt