Description

Session fixation vulnerability in Ampache before 3.3.3.5 allows remote attackers to hijack web sessions via unspecified vectors.

Remediation

References

CVE-2007-4438

Related Vulnerabilities

osTicket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1318)

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-5666)

MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2022-29905)

ownCloud Improper Input Validation Vulnerability (CVE-2020-28645)

Jboss EAP Credentials Management Errors Vulnerability (CVE-2009-5066)

Severity

Medium

Classification

CVE-2007-4438 CWE-287

Tags

Missing Update Known Vulnerabilities