Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:23191
HistoryApr 10, 2020 - 12:19 a.m.

Improper Session Management

2020-04-1000:19:00
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12

0.02 Low

EPSS

Percentile

88.8%

php is vulnerable to improper session management. The vulnerability exists as a previous security update introduced a bug into PHP session cookie handling. This could allow an attacker to stop a victim from viewing a vulnerable web site if the victim has first visited a malicious web page under the control of the attacker, and that page can set a cookie for the vulnerable web site.

References