Описание
An issue exists in PHP-Fusion 9.03.50 where session cookies are not deleted once a user logs out, allowing for an attacker to perform a session replay attack and impersonate the victim user.
An issue exists in PHP-Fusion 9.03.50 where session cookies are not deleted once a user logs out, allowing for an attacker to perform a session replay attack and impersonate the victim user.
Связанные уязвимости
CVSS3: 5.4
nvd
больше 4 лет назад
An issue exists in PHP-Fusion 9.03.50 where session cookies are not deleted once a user logs out, allowing for an attacker to perform a session replay attack and impersonate the victim user.
CVSS3: 5.4
fstec
больше 5 лет назад
Уязвимость CMS-системы PHP-Fusion, связанной с обходом процедуры аутентификации, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации