CVE-2011-4718 in PHPinfo

Summary

Session fixation vulnerability in the Sessions subsystem in PHP before 5.5.2 allows remote attackers to hijack web sessions by specifying a session ID.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

12/09/2011

Disclosure

08/13/2013

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

IDVulnerabilityCWEExpCouCVE
9978PHP Sessions session_regenerate_id access control264Proof-of-ConceptOfficial fixCVE-2011-4718

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

PreviousOverviewNext

Do you want to use VulDB in your project?

Use the official API to access entries easily!