Vulnerabilities > Session Fixation

DATE	CVE	VULNERABILITY TITLE	RISK
2021-06-24	CVE-2021-32710	Session Fixation vulnerability in Shopware Shopware is an open source eCommerce platform. network low complexity shopware CWE-384	7.5
2021-06-22	CVE-2021-35046	Session Fixation vulnerability in Icehrm 29.0.0.Os A session fixation vulnerability was discovered in Ice Hrm 29.0.0 OS which allows an attacker to hijack a valid user session via a crafted session cookie. network low complexity icehrm CWE-384	6.1
2021-06-21	CVE-2010-1434	Session Fixation vulnerability in Joomla Joomla! Joomla! Core is prone to a session fixation vulnerability. network low complexity joomla CWE-384	7.5
2021-06-16	CVE-2021-32676	Session Fixation vulnerability in Nextcloud Talk Nextcloud Talk is a fully on-premises audio/video and chat communication service. network low complexity nextcloud CWE-384	6.5
2021-05-27	CVE-2021-33394	Session Fixation vulnerability in Cubecart 6.4.2 Cubecart 6.4.2 allows Session Fixation. network low complexity cubecart CWE-384	5.4
2021-05-26	CVE-2018-16495	Session Fixation vulnerability in Versa-Networks Versa Operating System 20.2.0/21.1.0 In VOS user session identifier (authentication token) is issued to the browser prior to authentication but is not changed after the user successfully logs into the application. network low complexity versa-networks CWE-384	8.8
2021-03-10	CVE-2020-35229	Session Fixation vulnerability in Netgear Gs116E Firmware and Jgs516Pe Firmware The authentication token required to execute NSDP write requests on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices is not properly invalidated and can be reused until a new token is generated, which allows attackers (with access to network traffic) to effectively gain administrative privileges. low complexity netgear CWE-384	8.8
2021-02-26	CVE-2019-18946	Session Fixation vulnerability in Microfocus Solutions Business Manager Micro Focus Solutions Business Manager Application Repository versions prior to 11.7.1 are vulnerable to session fixation. low complexity microfocus CWE-384	4.8
2021-02-18	CVE-2020-35591	Session Fixation vulnerability in Pi-Hole 5.0/5.1/5.1.1 Pi-hole 5.0, 5.1, and 5.1.1 allows Session Fixation. network low complexity pi-hole CWE-384	5.4
2021-02-15	CVE-2020-4954	Session Fixation vulnerability in IBM Spectrum Protect Operations Center IBM Spectrum Protect Operations Center 7.1 and 8.1 could allow a remote attacker to bypass authentication restrictions, caused by improper session validation . low complexity ibm CWE-384	5.4

Vulnerabilities > Session Fixation {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Session Fixation"}]}

Vulnerabilities > Session Fixation