Session fixation

Session fixation vulnerability in Aipo and Aipo ASP 3.0.1.0 and earlier allows remote attackers to hijack web sessions via unspecified vectors...

CVE-2007-5154

Session fixation vulnerability in Aipo and Aipo ASP 3.0.1.0 and earlier allows remote attackers to hijack web sessions via unspecified vectors...

CVE-2007-5154

Aipo (Aimluck, Inc.) and Aipo ASP 3.0.1.0 and earlier are affected by a session fixation vulnerability. The issue allows an attacker to impersonate a user by obtaining or forcing a valid session ID, enabling potentially privileged actions once the user logs in. The JVN entry describes risk as use...

CVE-2007-5154

Session fixation vulnerability in Aipo and Aipo ASP 3.0.1.0 and earlier allows remote attackers to hijack web sessions via unspecified vectors...

JVN#70075625 Aipo session fixation vulnerability

Aipo from Aimluck, Inc. is groupware including functions such as scheduler and intra-blogging. Aipo contains a session fixation vulnerability which may allow an attacker to impersonate a user when the user logs into AIPO with the session ID sent by the attacker. Impact This vulnerability may allo...