CVE-2025-27453 Blast Radius

MEDIUM • CVSS 5.3The HttpOnly flag is set to false on the PHPSESSION cookie. Therefore, the cookie can be accessed by other sources such as JavaScript.

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2025-27453.

Start Free Scan →← Back to CVE-2025-27453