CVE-2006-1228

Опубликовано: 14 мар. 2006

Источник: debian

Описание

Session fixation vulnerability in Drupal 4.5.x before 4.5.8 and 4.6.x before 4.5.8 allows remote attackers to gain privileges by tricking a user to click on a URL that fixes the session identifier.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
drupal	fixed	4.5.8-1		package

Связанные уязвимости

CVE-2006-1228

ubuntu

больше 19 лет назад

Session fixation vulnerability in Drupal 4.5.x before 4.5.8 and 4.6.x before 4.5.8 allows remote attackers to gain privileges by tricking a user to click on a URL that fixes the session identifier.

CVE-2006-1228

nvd

больше 19 лет назад

Session fixation vulnerability in Drupal 4.5.x before 4.5.8 and 4.6.x before 4.5.8 allows remote attackers to gain privileges by tricking a user to click on a URL that fixes the session identifier.

GHSA-7ff4-pff4-jj4c

github

около 3 лет назад

Session fixation vulnerability in Drupal 4.5.x before 4.5.8 and 4.6.x before 4.5.8 allows remote attackers to gain privileges by tricking a user to click on a URL that fixes the session identifier.