Added Laravel hijacked authentication cookies vuln

Vulnerability: Hijacked authentication cookies Vendor/product: laravel/framework, illuminate/auth CVE: none Affected version: v4.0.0 to v4.1.25 Fixed version: v4.1.26 Reference: laravel/framework@c5ac19e
lunika · Jun 21, 2014 · 8df3307 · 8df3307
1 parent aee23a7
commit 8df3307
Show file tree

Hide file tree

Showing 2 changed files with 22 additions and 0 deletions.
diff --git a/illuminate/auth/2014-04-15.yaml b/illuminate/auth/2014-04-15.yaml
@@ -0,0 +1,11 @@
+title:     Hijacked authentication cookies vulnerability
+link:      http://laravel.com/docs/upgrade#upgrade-4.1.26
+cve:       ~
+branches:
+    4.0.x:
+        time:     2014-04-15 12:19:00
+        versions: [>=4.0.0,<4.0.99]
+    4.1.x:
+        time:     2014-04-15 12:19:00
+        versions: [>=4.1.0,<4.1.26]
+reference: composer://illuminate/auth
diff --git a/laravel/framework/2014-04-15.yaml b/laravel/framework/2014-04-15.yaml
@@ -0,0 +1,11 @@
+title:     Hijacked authentication cookies vulnerability
+link:      http://laravel.com/docs/upgrade#upgrade-4.1.26
+cve:       ~
+branches:
+    4.0.x:
+        time:     2014-04-15 12:19:00
+        versions: [>=4.0.0,<4.0.99]
+    4.1.x:
+        time:     2014-04-15 12:19:00
+        versions: [>=4.1.0,<4.1.26]
+reference: composer://laravel/framework