CVE-2018-12071
Summary (CVE-2018-12071) : CodeIgniter before 3.1.9 is affected by a session fixation vulnerability caused by mishandling of the PHP directive session.use_strict_mode in the Session Library. Multiple connected sources describe this issue consistently (CodeIgniter’s prior to 3.1.9 handling, and ad...