If the Quarkus Form Authentication session cookie Path attribute is set to `/` then a cross-site attack may be initiated which might lead to the Information Disclosure. This attack can be prevented with the Quarkus CSRF Prevention feature.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
quarkus quarkus |
||
redhat build of quarkus - |