CVE-2007-2978
CVE-2007-2978 describes a session fixation vulnerability in eggblog versions 3.1.0 and earlier, where remote attackers can hijack web sessions by manipulating the PHPSESSID parameter. Affected software: eggblog (versions up to 3.1.0 and earlier). Root cause: session identifier can be set by an at...