CVE-2022-44788

An issue was discovered in Appalti & Contratti 9.12.2. It allows Session Fixation. When a user logs in providing a JSESSIONID cookie that is issued by the server at the first visit, the cookie value is not updated after a successful login.
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:maggioli:appalti_\&_contratti:9.12.2:*:*:*:*:*:*:*

History

23 Nov 2022, 16:03

Type Values Removed Values Added
New CVE

Information

Published : 2022-11-21 23:15

Updated : 2024-02-04 23:14


NVD link : CVE-2022-44788

Mitre link : CVE-2022-44788

CVE.ORG link : CVE-2022-44788


JSON object : View

Products Affected

maggioli

  • appalti_\&_contratti
CWE
CWE-384

Session Fixation