Name of the Vulnerable Software and Affected Versions Websoft HCM (affected versions not specified)

Description The issue is related to the lack of the "Secure" attribute in session authorization cookies, which can be exploited by a remote attacker to intercept HTTP network traffic and obtain a user's session identifier.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.