Описание
Session fixation vulnerability in eggblog 3.1.0 and earlier allows remote attackers to hijack web sessions by setting the PHPSESSID parameter.
Session fixation vulnerability in eggblog 3.1.0 and earlier allows remote attackers to hijack web sessions by setting the PHPSESSID parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2007-2978
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34549
- http://osvdb.org/36734
- http://secunia.com/advisories/25443
- http://securityreason.com/securityalert/2756
- http://www.majorsecurity.de/index_2.php?major_rls=major_rls48
- http://www.securityfocus.com/archive/1/469888/100/0/threaded
Связанные уязвимости
nvd
больше 18 лет назад
Session fixation vulnerability in eggblog 3.1.0 and earlier allows remote attackers to hijack web sessions by setting the PHPSESSID parameter.