5 matches found
CVE-2007-5154
Session fixation vulnerability in Aipo and Aipo ASP 3.0.1.0 and earlier allows remote attackers to hijack web sessions via unspecified vectors...
Session fixation
Session fixation vulnerability in Aipo and Aipo ASP 3.0.1.0 and earlier allows remote attackers to hijack web sessions via unspecified vectors...
CVE-2007-5154
Session fixation vulnerability in Aipo and Aipo ASP 3.0.1.0 and earlier allows remote attackers to hijack web sessions via unspecified vectors...
CVE-2007-5154
Aipo (Aimluck, Inc.) and Aipo ASP 3.0.1.0 and earlier are affected by a session fixation vulnerability. The issue allows an attacker to impersonate a user by obtaining or forcing a valid session ID, enabling potentially privileged actions once the user logs in. The JVN entry describes risk as use...
JVN#70075625 Aipo session fixation vulnerability
Aipo from Aimluck, Inc. is groupware including functions such as scheduler and intra-blogging. Aipo contains a session fixation vulnerability which may allow an attacker to impersonate a user when the user logs into AIPO with the session ID sent by the attacker. Impact This vulnerability may allo...