CVE-2007-2978

Session fixation vulnerability in eggblog 3.1.0 and earlier allows remote attackers to hijack web sessions by setting the PHPSESSID parameter.
Configurations

Configuration 1 (hide)

cpe:2.3:a:eggblog:eggblog:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2007-06-01 01:30

Updated : 2024-02-04 17:13


NVD link : CVE-2007-2978

Mitre link : CVE-2007-2978

CVE.ORG link : CVE-2007-2978


JSON object : View

Products Affected

eggblog

  • eggblog
CWE
CWE-59

Improper Link Resolution Before File Access ('Link Following')