2 matches found
CVE-2022-46170
CodeIgniter is a PHP full-stack web framework. When an application uses 1 multiple session cookies e.g., one for user pages and one for admin pages and 2 a session handler is set to DatabaseHandler, MemcachedHandler, or RedisHandler, then if an attacker gets one session cookie e.g., one for user...
CVE-2022-46170
CodeIgniter (CodeIgniter4) documentation describes a vulnerability where an application using multiple session cookies (e.g., user and admin pages) and a session handler set to DatabaseHandler, MemcachedHandler, or RedisHandler allows an attacker who obtains one session cookie to access pages req...