🔐 CVE Alert

CVE-2026-56813

UNKNOWN 0.0

Cookie attribute injection in Plug.Conn.Cookies.encode/2

CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th

Improper Neutralization of Parameter/Argument Delimiters vulnerability in elixir-plug plug allows an attacker to inject or override HTTP cookie attributes. The Plug.Conn.Cookies.encode/2 function in lib/plug/conn/cookies.ex builds the Set-Cookie response header by interpolating the cookie value and its path, domain, same_site, and extra attributes directly into the header without neutralizing the ';' delimiter that separates cookie attributes. An application that places attacker-controlled data into a cookie value or attribute (for example via Plug.Conn.put_resp_cookie/4 when reflecting a username or preference) lets an attacker inject a ';' to append or override cookie attributes (such as Domain and Path scope, or dropping the Secure and HttpOnly flags), enabling cookie tossing and session fixation. Carriage return, line feed, and null bytes are rejected by Plug.Conn header validation, so HTTP response splitting is not possible, but attribute injection through ';' is not prevented. This issue affects plug: from 0.1.0 before 1.16.6, from 1.17.0 before 1.17.4, from 1.18.0 before 1.18.5, from 1.19.0 before 1.19.5, from 1.20.0 before 1.20.3.

CWE CWE-141
Vendor elixir-plug
Product plug
Published Jul 10, 2026
Last Updated Jul 10, 2026
Stay Ahead of the Next One

Get instant alerts for elixir-plug plug

Be the first to know when new unknown vulnerabilities affecting elixir-plug plug are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

elixir-plug / plug
0.1.0 < 1.16.6 1.17.0 < 1.17.4 1.18.0 < 1.18.5 1.19.0 < 1.19.5 1.20.0 < 1.20.3
elixir-plug / plug
f26876aa67aaeb38e616638aa3efbcc2fe2906a5 < *

References

NVD ↗ CVE.org ↗ EPSS Data ↗
github.com: https://github.com/elixir-plug/plug/security/advisories/GHSA-wpmj-jh88-rpgm cna.erlef.org: https://cna.erlef.org/cves/CVE-2026-56813.html osv.dev: https://osv.dev/vulnerability/EEF-CVE-2026-56813 github.com: https://github.com/elixir-plug/plug/commit/c6575800b2c4e15af1904df87522ca8a23da020c

Credits

Peter Ullrich José Valim Jonatan Männchen