CVE-2008-4649
CVE-2008-4649 describes a session fixation vulnerability in Elxis CMS 2008.1 revision 2204, where remote attackers can hijack user sessions by supplying a crafted PHPSESSID parameter. The issue specifically affects Elxis CMS and enables session hijacking, as reflected in the description. The CVSS...