phpMyFAQ is contains Sensitive Cookie in HTTPS Session Without ‘Secure’ Attribute in versions prior to 3.1.9. References https://nvd.nist.gov/vuln/detail/CVE-2022-4409 https://github.com/thorsten/phpmyfaq/commit/8b47f38 https://huntr.dev/bounties/5915ed4c-5fe2-42e7-8fac-5dd0d032727c https://github.com/thorsten/phpMyFAQ/commit/c16cc2bbe2687f75aa1204b804483091fae43cba https://github.com/advisories/GHSA-wpgc-5cr5-h9gg Related