Lucene search
HistoryDec 15, 2008 - 6:00 p.m.
CVE-2008-5575
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.7
Confidence
Low
EPSS
0.008
Percentile
81.6%
Session fixation vulnerability in Pro Clan Manager 0.4.2 and earlier allows remote attackers to hijack web sessions by setting the PHPSESSID parameter.
Affected configurations
Node
proclanmanagerpro_clan_managerRange≤0.4.2
ORproclanmanagerpro_clan_managerMatch0.1.0
ORproclanmanagerpro_clan_managerMatch0.1.5
ORproclanmanagerpro_clan_managerMatch0.2.0
ORproclanmanagerpro_clan_managerMatch0.4.0
ORproclanmanagerpro_clan_managerMatch0.4.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| proclanmanager | pro_clan_manager | * | cpe:2.3:a:proclanmanager:pro_clan_manager:*:*:*:*:*:*:*:* |
| proclanmanager | pro_clan_manager | 0.1.0 | cpe:2.3:a:proclanmanager:pro_clan_manager:0.1.0:*:*:*:*:*:*:* |
| proclanmanager | pro_clan_manager | 0.1.5 | cpe:2.3:a:proclanmanager:pro_clan_manager:0.1.5:*:*:*:*:*:*:* |
| proclanmanager | pro_clan_manager | 0.2.0 | cpe:2.3:a:proclanmanager:pro_clan_manager:0.2.0:*:*:*:*:*:*:* |
| proclanmanager | pro_clan_manager | 0.4.0 | cpe:2.3:a:proclanmanager:pro_clan_manager:0.4.0:*:*:*:*:*:*:* |
| proclanmanager | pro_clan_manager | 0.4.1 | cpe:2.3:a:proclanmanager:pro_clan_manager:0.4.1:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2008-5575
2008-12-15 17:45:00
cve
cve
CVE-2008-5575
2008-12-15 18:00:00
prion
prion
Session fixation
2008-12-15 18:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.7
Confidence
Low
EPSS
0.008
Percentile
81.6%
Related for NVD:CVE-2008-5575