CVE-2008-3428

2008-07-31T22:41:00
ID CVE-2008-3428
Type cve
Reporter cve@mitre.org
Modified 2017-08-08T01:31:00

Description

Session fixation vulnerability in phpFreeChat 1.1 allows remote authenticated users to hijack web sessions by setting the session_id parameter to match the victim's nickid parameter.