Approved changes feed: RSS · Atom
cpe:2.3:a:rapid7:appspider:*:*:*:*:enterprise:chrome:*:*
part: a version: * update: *
| Vendor | Rapid7 (d570a41c-9d2a-5057-8a47-227f116734f8) |
|---|---|
| Product | Appspider (980609d5-50b4-5710-9880-3b84ddfe521d) |
| Edition | * |
| Language | * |
| Software edition | enterprise |
| Target software | chrome |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2019-5647 |
vulnerable | 2026-06-03 14:40:35.900514 |
Rapid7 AppSpider Chrome Plugin Insufficient Session Expiration
MEDIUM (4.4)
The Chrome Plugin for Rapid7 AppSpider can incorrectly keep browser sessions active after recording a macro, even after a restart of the Chrome browser. This behavior could make future session hijacking attempts easier, since the user could believe a session was closed when it was not. This issue affects Rapid7 AppSpider version 3.8.213 and prior versions, and is fixed in version 3.8.215.
Published: 2020-01-22T18:00:22.724Z
Updated: 2024-09-17T00:51:55.819Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.