Session fixation vulnerability in Plogger allows remote attackers to hijack web sessions by setting the PHPSESSID parameter.
Max CVSS
7.5
EPSS Score
1.10%
Published
2007-04-25
Updated
2018-10-16
OpenSSH 4.6 and earlier, when ChallengeResponseAuthentication is enabled, allows remote attackers to determine the existence of user accounts by attempting to authenticate via S/KEY, which displays a different response if the user account exists, a similar issue to CVE-2001-1483.
Max CVSS
5.0
EPSS Score
1.01%
Published
2007-04-25
Updated
2017-07-29
Session fixation vulnerability in eXV2 CMS 2.0.4.3 and earlier allows remote attackers to hijack web sessions by setting the PHPSESSID cookie.
Max CVSS
5.0
EPSS Score
0.14%
Published
2007-04-11
Updated
2008-09-05
Session fixation vulnerability in onelook courts on-line allows remote attackers to hijack web sessions by setting a PHPSESSID cookie.
Max CVSS
7.5
EPSS Score
1.03%
Published
2007-04-11
Updated
2018-10-16
Session fixation vulnerability in onelook onebyone CMS allows remote attackers to hijack web sessions by setting a PHPSESSID cookie.
Max CVSS
7.5
EPSS Score
1.04%
Published
2007-04-11
Updated
2018-10-16
Session fixation vulnerability in onelook obo Shop allows remote attackers to hijack web sessions by setting a PHPSESSID cookie.
Max CVSS
7.5
EPSS Score
1.03%
Published
2007-04-11
Updated
2018-10-16
Session fixation vulnerability in WebBlizzard CMS allows remote attackers to hijack web sessions by setting a PHPSESSID cookie.
Max CVSS
7.5
EPSS Score
1.04%
Published
2007-04-11
Updated
2018-10-16
The Graphics Rendering Engine in Microsoft Windows 2000 SP4 and XP SP2 allows local users to gain privileges via "invalid application window sizes" in layered application windows, aka the "GDI Invalid Window Size Elevation of Privilege Vulnerability."
Max CVSS
7.2
EPSS Score
0.04%
Published
2007-04-04
Updated
2018-10-17
8 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!