3 matches found
CVE-2016-4309
Session fixation vulnerability in Symphony CMS 2.6.7, when session.useonlycookies is disabled, allows remote attackers to hijack web sessions via the PHPSESSID parameter...
Symphony CMS 2.6.7 Session Fixation
Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/SYMPHONY-CMS-SESSION-FIXATION.txt + ISR: APPARITIONSEC Vendor: ==================== www.getsymphony.com Product: ================== Symphony CMS v2.6.7 Download:...
Symphony CMS 2.6.7 - Session Fixation
Exploit for php platform in category web applications + Credits: John Page aka hyp3rlinx + ISR: APPARITIONSEC Vendor: ==================== www.getsymphony.com Product: ================== Symphony CMS v2.6.7 Download: http://www.getsymphony.com/download/ Symphony is a XSLT-powered open source...