CVE-2007-5380

Опубликовано: 19 окт. 2007

Источник: ubuntu

Приоритет: low

CVSS2: 6.8

Описание

Session fixation vulnerability in Rails before 1.2.4, as used for Ruby on Rails, allows remote attackers to hijack web sessions via unspecified vectors related to "URL-based sessions."

Релиз	Статус	Примечание
dapper	ignored	end of life
devel	not-affected
edgy	ignored	end of life, was needed
feisty	ignored	end of life, was needed
gutsy	not-affected
hardy	not-affected
intrepid	not-affected
jaunty	not-affected
karmic	not-affected
upstream	released	1.2.4

Показывать по

Ссылки на источники

6.8 Medium

CVSS2

Связанные уязвимости

CVE-2007-5380

nvd

почти 18 лет назад

Session fixation vulnerability in Rails before 1.2.4, as used for Ruby on Rails, allows remote attackers to hijack web sessions via unspecified vectors related to "URL-based sessions."

CVE-2007-5380

debian

почти 18 лет назад

Session fixation vulnerability in Rails before 1.2.4, as used for Ruby ...

GHSA-jwhv-rgqc-fqj5

github

почти 8 лет назад

Session fixation vulnerability in Rails

6.8 Medium

CVSS2

CVE-2007-5380

Описание

Пакет rails

Ссылки на источники

Связанные уязвимости