infinispan-spring5-common is vulnerable to session fixation. An improper implementation of the session cookie creation and deletion allows an attacker to gain unauthorized access to the application.
CPE | Name | Operator | Version |
---|---|---|---|
infinispan spring 5 common module | le | 10.0.0.Beta3 | |
infinispan spring 5 common module | le | 9.4.14.Final |