Web Application Vulnerabilities Index

This page lists X vulnerabilities classified as CWE-598 that can be detected by Invicti.

Select Category
Critical
High
Medium
Low
Best Practice
Information
Select Vulnerability
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Select Vulnerability
Vulnerability Name
Classification
Severity
Password Transmitted over Query String
Password Transmitted over Query String
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
, 
CWE-598
, 
ISO27001-A.14.2.5
, 
OWASP 2013-A6
, 
OWASP 2017-A3
, 
PCI v3.2-6.5.4
, 
WASC-13
, 
Medium
PHP session.use_only_cookies Is Disabled
PHP session.use_only_cookies Is Disabled
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
, 
CWE-598
, 
OWASP 2013-A5
, 
OWASP 2017-A6
, 
Medium
PHP session.use_trans_sid Is Enabled
PHP session.use_trans_sid Is Enabled
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
, 
CWE-598
, 
OWASP 2013-A5
, 
OWASP 2017-A6
, 
Medium