ThEllS Posted December 29, 2011 Share Posted December 29, 2011 Hola Estoy escaneando mi web con Acunetix Web Vulnerability Scannery este es uno de los bugs que me aparece: ¿Puede perjudicarme mucho? ¿Como puedo solucionarlo? Gracias! Vulnerability description This application contains a session token in the query parameters. A session token is sensitive information and should not be stored in the URL. URLs could be logged or leaked via the Referer header. Affected items /cart.php (4f20a5352ff48d175f0da2eb395cbbbc) /cart.php (5306ef1a7ac03ad00570267e9a2ce9c1) /cart.php (6066d7bae583c53109bbd2a5a2e63fd9) /cart.php (6841a05278c4cfa57bdd5647b164b69d) /cart.php (74d98308e8481a1ff1e67bc55669d5f9) /cart.php (88800637aa325cfd94b52ef034c60cae) /cart.php (8f097d37327b56fd0a52b4e09a152e4a) /cart.php (bb75c88b8ffda85322ee63aff32f167d) /cart.php (e034285ed374326f72bac2a6dd52052d) /cart.php (e471a6591ad690e5ac4813fc2174ee83) /cart.php (f240ac2ab36e3065ab679e9cdce21793) /cart.php (fc101ff11ef9205603391b3ecdaf52f9) /cart.php (fe50756c2d4e884c0defb1f671f238fe) The impact of this vulnerability Possible sensitive information disclosure. How to fix this vulnerability The session should be maintained using cookies (or hidden input fields). Link to comment Share on other sites More sharing options...
4webs.es Posted December 31, 2011 Share Posted December 31, 2011 Yo no le daría mucha importancia. Link to comment Share on other sites More sharing options...
Recommended Posts