6 matches found
EUVD-2007-3042
Malware in sbrugna...
CVE-2007-3050
Session fixation vulnerability in chameleon cms 3.0 and earlier allows remote attackers to hijack web sessions by setting the PHPSESSID parameter...
Session fixation
Session fixation vulnerability in chameleon cms 3.0 and earlier allows remote attackers to hijack web sessions by setting the PHPSESSID parameter...
CVE-2007-3050
Session fixation vulnerability in chameleon cms 3.0 and earlier allows remote attackers to hijack web sessions by setting the PHPSESSID parameter...
CVE-2007-3050
CVE-2007-3050 concerns Chameleon CMS (3.0 and earlier). A session fixation flaw allows remote attackers to hijack web sessions by supplying a PHPSESSID parameter. The issue arises from how session IDs can be set by an external actor, enabling partial confidentiality and integrity impact as per NV...
[MajorSecurity Advisory #50]chameleon cms - Session fixation Issue
MajorSecurity Advisory 50chameleon cms - Session fixation Issue Details ======= Product: chameleon cms Affected version: 3.0 and prior Remote-Exploit: yes Vendor-URL: http://www.chameleon-cms.com Vendor-Status: informed Advisory-Status: published Credits ============ Discovered by: David...