CVE-2007-3050
CVE-2007-3050 concerns Chameleon CMS (3.0 and earlier). A session fixation flaw allows remote attackers to hijack web sessions by supplying a PHPSESSID parameter. The issue arises from how session IDs can be set by an external actor, enabling partial confidentiality and integrity impact as per NV...