Lucene search

[email protected]CVE-2007-3053

HistoryJun 06, 2007 - 1:30 a.m.

CVE-2007-3053

2007-06-0601:30:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

vulnerability

session fixation

calimero.cms

nvd

7.5 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.016 Low

EPSS

Percentile

87.3%

JSON

Session fixation vulnerability in Calimero.CMS 3.3.1232 and earlier allows remote attackers to hijack web sessions by setting the PHPSESSID parameter.

CPENameOperatorVersion
calimero.cms:calimero.cmscalimero.cmsle3.3.1232

CPE	Name	Operator	Version
calimero.cms:calimero.cms	calimero.cms	le	3.3.1232

References

osvdb.org/36984

secunia.com/advisories/25521

www.majorsecurity.de/index_2.php?major_rls=major_rls49

www.securityfocus.com/archive/1/470272/100/0/threaded

exchange.xforce.ibmcloud.com/vulnerabilities/34685

7.5 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.016 Low

EPSS

Percentile

87.3%

JSON

Related for CVE-2007-3053

prion1 cvelist1