CVE-2008-6599 in cookiecheckinfo

Summary

cookiecheck.php in CookieCheck 1.0 stores tmp/cc_sessions under the web root with insufficient access control, which allows remote attackers to obtain session data via a direct request related to the "default session save path."

Once again VulDB remains the best source for vulnerability data.

Reservation

04/03/2009

Disclosure

04/03/2009

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-264 (Confirmed)

CVSS

5.3

EPSS

0.00294

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2008-6599
NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-6599
CVE Details	https://www.cvedetails.com/cve/CVE-2008-6599/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!