2 matches found
CVE-2008-4122
CVE-2008-4122 affects Joomla! 1.5.8, where the session cookie is not marked as Secure in HTTPS sessions. This allows interception of the session cookie if an attacker can observe HTTP traffic, potentially enabling session hijacking. The issue is rooted in the cookie not using the Secure flag, as ...
Joomla: Session hijacking vulnerability, CVE-2008-4122
Joomla: Session hijacking vulnerability, CVE-2008-4122 References https://vulners.com/cve/CVE-2008-4122 http://int21.de/cve/CVE-2008-4122-joomla.html http://enablesecurity.com/2008/08/11/surf-jack-https-will-not-save-you/ https://www.defcon.org/html/defcon-16/dc-16-speakers.htmlPerry Description...