Vulnerabilities > Session Fixation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-09 | CVE-2024-22318 | Session Fixation vulnerability in IBM I Access Client Solutions IBM i Access Client Solutions (ACS) 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.4 is vulnerable to NT LAN Manager (NTLM) hash disclosure by an attacker modifying UNC capable paths within ACS configuration files to point to a hostile server. | 5.5 |
| 2024-02-07 | CVE-2024-24823 | Session Fixation vulnerability in Graylog Graylog is a free and open log management platform. | 4.4 |
| 2024-02-02 | CVE-2023-50941 | Session Fixation vulnerability in IBM Powersc 1.3/2.0/2.1 IBM PowerSC 1.3, 2.0, and 2.1 does not provide logout functionality, which could allow an authenticated user to gain access to an unauthorized user using session fixation. | 5.4 |
| 2024-01-21 | CVE-2023-52353 | Session Fixation vulnerability in ARM Mbed TLS An issue was discovered in Mbed TLS through 3.5.1. | 7.5 |
| 2024-01-19 | CVE-2024-23679 | Session Fixation vulnerability in Enonic XP Enonic XP versions less than 7.7.4 are vulnerable to a session fixation issue. | 9.8 |
| 2024-01-12 | CVE-2023-50920 | Session Fixation vulnerability in Gl-Inet products An issue was discovered on GL.iNet devices before version 4.5.0. | 5.5 |
| 2024-01-09 | CVE-2024-0351 | Session Fixation vulnerability in Engineers Online Portal Project Engineers Online Portal 1.0 A vulnerability classified as problematic has been found in SourceCodester Engineers Online Portal 1.0. | 3.5 |
| 2023-12-19 | CVE-2023-6913 | Session Fixation vulnerability in Imoulife Imou Life 6.7.0 A session hijacking vulnerability has been detected in the Imou Life application affecting version 6.7.0. | 8.1 |
| 2023-12-11 | CVE-2023-49804 | Session Fixation vulnerability in multiple products Uptime Kuma is an easy-to-use self-hosted monitoring tool. | 7.8 |
| 2023-12-08 | CVE-2023-48929 | Session Fixation vulnerability in Franklin-Electric System Sentinel Anyware 1.6.24.492 Franklin Fueling Systems System Sentinel AnyWare (SSA) version 1.6.24.492 is vulnerable to Session Fixation. | 9.8 |