CVE-2007-5380 in Ruby on Railsinfo

Summary

Session fixation vulnerability in Rails before 1.2.4, as used for Ruby on Rails, allows remote attackers to hijack web sessions via unspecified vectors related to "URL-based sessions."

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

10/11/2007

Disclosure

10/19/2007

Moderation

VulDB entry created

Entries

VDB-39371 (1)

CPE

ready

CWE

CWE-384 (Unconfirmed)

CVSS

7.3

EPSS

0.05845

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-5380
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-5380
CVE Details	https://www.cvedetails.com/cve/CVE-2007-5380/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!