CVE-2021-40642

Name of the Vulnerable Software and Affected Versions Textpattern CMS versions 4.8.7 and older

Description The issue exists due to a sensitive cookie in HTTPS sessions without the 'Secure' attribute set, specifically affecting the txp login session cookie in the application via textpattern/lib/txplib misc.php. If the secure flag is not set, the cookie will be transmitted in clear-text if the user visits any HTTP URLs within the cookie's scope. An attacker may induce this event by feeding a user suitable links, either directly or via another web site.

Recommendations For Textpattern CMS versions 4.8.7 and older, consider setting the secure flag for the txp login session cookie to prevent it from being transmitted in clear-text. As a temporary workaround, restrict access to HTTP URLs within the cookie's scope to minimize the risk of exploitation.