Cyber Security Blog

Its All About Ethics

Posts by: Divya

Vulnerabilities in play Framework

Vulnerabilities in play Framework Http only cookie bypass CVE-2015-2156 Description A vulnerability has been found in Play’s cookie handling code that could allow an attacker to bypass the httpOnly flag on sensitive cookies. Impact Any Play apps that reflect cookie values back Read more…

Vulnerabilities in meteor framework

Vulnerabilities in meteor framework Meteor, or MeteorJS, is a  free and open source isomorphic JavaScript web framework written using Node.js. Meteor allows for rapid prototyping and produces cross-platform (Android, ios, web) code. It integrates with MongoDB and uses the distributed data protocol and a  publish Read more…