CVE-2007-3053

Description

Session fixation vulnerability in Calimero.CMS 3.3.1232 and earlier allows remote attackers to hijack web sessions by setting the PHPSESSID parameter.

Affected products

• calimero.cms / calimero.cms3.3.1232

References

• MISChttp://www.securityfocus.com/archive/1/470272/100/0/threaded
• MISChttp://osvdb.org/36984
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/34685
• MISChttp://www.majorsecurity.de/index_2.php?major_rls=major_rls49
• VENDOR_ADVISORYhttp://secunia.com/advisories/25521