CVE-2008-5964

Published: Jan 23, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

Session fixation vulnerability in Social ImpressCMS before 1.1.1 RC1 allows remote attackers to hijack web sessions by setting the PHPSESSID parameter.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

32985

third-party-advisory

x_refsource_SECUNIA

http://sourceforge.net/forum/forum.php?forum_id=893767

x_refsource_CONFIRM

50413

vdb-entry

x_refsource_OSVDB

http://wiki.impresscms.org/index.php?title=Change_Log#2008-12-2_:_1.1.1_RC

x_refsource_CONFIRM

impresscms-phpsessid-session-hijacking(46989)

vdb-entry

x_refsource_XF

32495

vdb-entry

x_refsource_BID

20081203 Re: [HACKATTACK Advisory 20081127]Social Impress CMS 1.1 - Session Fixation

mailing-list

x_refsource_BUGTRAQ

20081127 [HACKATTACK Advisory 20081127]Social Impress CMS 1.1 - Session Fixation

mailing-list

x_refsource_BUGTRAQ

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2008-5964

Description

Affected Products

References