Описание
A vulnerability classified as problematic has been found in PHPGurukul Boat Booking System 1.0. Affected is the function session_start. The manipulation leads to session fixiation. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
Ссылки
- ExploitThird Party Advisory
- Product
- Permissions RequiredThird Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:phpgurukul:boat_booking_system:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 39%
0.0017
Низкий
4.3 Medium
CVSS3
8.8 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-384
CWE-384
Связанные уязвимости
CVSS3: 4.3
github
больше 1 года назад
A vulnerability classified as problematic has been found in PHPGurukul Boat Booking System 1.0. Affected is the function session_start. The manipulation leads to session fixiation. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
EPSS
Процентиль: 39%
0.0017
Низкий
4.3 Medium
CVSS3
8.8 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-384
CWE-384