EPSS
Percentile
21.4%
filegator/filegator is vulnerable to session fixation. The vulnerability exists in the authenticate function in JsonFile.php due to invalid session generation on user update which allows a malicious user to hijack the session
authenticate
JsonFile.php
github.com/advisories/GHSA-47vg-483w-hp3m
github.com/filegator/filegator/commit/fcd3995f64f5dfc6a4c2c059cc22a2fef1e81225
huntr.dev/bounties/881f8f36-d5c8-470d-8261-f109e6d5db4b