Vulnerabilities

CVE-2026-0696 - Session Cookies Missing HttpOnly Attribute

2026-01-16 0 views admin
CVE-2026-0696 - Session Cookies Missing HttpOnly Attribute

CVE ID : CVE-2026-0696 Published : Jan. 16, 2026, 1:34 p.m. | 36 minutes ago Description : In ConnectWise PSA versions older than 2026.1, certain session cookies were not set with the HttpOnly attribute. In some scenarios, this could allow client-side scripts access to session cookie values. Severity: 6.5 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

Severity
MEDIUM
Published
Jan. 16, 2026

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2026-0696medium

More from Vulnerabilities

CVE-2025-15104 - Nu Html Checker (validator.nu) - Restriction bypass vulnerability allowing local...

CVE-2025-15104 - Nu Html Checker (validator.nu) - Restriction bypass vulnerability allowing local...

2026-01-16 0
CVE-2025-68921 - SteelSeries Nahimic 3 Directory Traversal Vulnerability

CVE-2025-68921 - SteelSeries Nahimic 3 Directory Traversal Vulnerability

2026-01-16 0
CVE-2026-21624 - Extension - stackideas.com - Persistent XSS in EasyDiscuss component 1.0.0-5.0.1...

CVE-2026-21624 - Extension - stackideas.com - Persistent XSS in EasyDiscuss component 1.0.0-5.0.1...

2026-01-16 0
CVE-2026-21623 - Extension - stackideas.com - Persistent XSS in EasyDiscuss component 1.0.0-5.0.1...

CVE-2026-21623 - Extension - stackideas.com - Persistent XSS in EasyDiscuss component 1.0.0-5.0.1...

2026-01-16 0

Trending

1

Tech: Go-legacy-winxp: Compile Golang 1.24 code for Windows XP

2026-01-15 • 4457 views
2

Tech: Data is the only moat

2026-01-15 • 4133 views
3

Tech: Pocket TTS: A high quality TTS that gives your CPU a voice

2026-01-15 • 3239 views
4

Tech: AWS European Sovereign Cloud

2026-01-15 • 2741 views
5

Tech: JuiceFS is a distributed POSIX file system built on top of Redis and S3

2026-01-15 • 2719 views