Vulnerabilities > Session Fixation

DATE	CVE	VULNERABILITY TITLE	RISK
2022-09-02	CVE-2022-38054	Session Fixation vulnerability in Apache Airflow In Apache Airflow versions 2.2.4 through 2.3.3, the `database` webserver session backend was susceptible to session fixation. network low complexity apache CWE-384 critical	9.8
2022-08-25	CVE-2022-31798	Session Fixation vulnerability in Nortekcontrol Emerge E3 Firmware 0.3207E/0.3207P Nortek Linear eMerge E3-Series 0.32-07p devices are vulnerable to /card_scan.php?CardFormatNo= XSS with session fixation (via PHPSESSID) when they are chained together. network low complexity nortekcontrol CWE-384	6.1
2022-08-25	CVE-2022-2997	Session Fixation vulnerability in Snipeitapp Snipe-It Session Fixation in GitHub repository snipe/snipe-it prior to 6.0.10. network low complexity snipeitapp CWE-384	8.0
2022-08-22	CVE-2022-30605	Session Fixation vulnerability in Wwbn Avideo 11.6 A privilege escalation vulnerability exists in the session id functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. network low complexity wwbn CWE-384	8.8
2022-08-15	CVE-2022-2820	Session Fixation vulnerability in Namelessmc Nameless Session Fixation in GitHub repository namelessmc/nameless prior to v2.0.2. network low complexity namelessmc CWE-384	8.2
2022-08-10	CVE-2022-33927	Session Fixation vulnerability in Dell Wyse Management Suite Dell Wyse Management Suite 3.6.1 and below contains a Session Fixation vulnerability. network low complexity dell CWE-384	6.5
2022-07-19	CVE-2022-34536	Session Fixation vulnerability in DW Megapix Firmware 4.2.0.32842 Digital Watchdog DW MEGApix IP cameras A7.2.2_20211029 allows attackers to access the core log file and perform session hijacking via a crafted session token. network low complexity dw CWE-384	7.5
2022-07-06	CVE-2022-22681	Session Fixation vulnerability in Synology Photo Station Session fixation vulnerability in access control management in Synology Photo Station before 6.8.16-3506 allows remote attackers to bypass security constraint via unspecified vectors. network low complexity synology CWE-384	7.5
2022-07-01	CVE-2022-25896	Session Fixation vulnerability in Passport Project Passport This affects the package passport before 0.6.0. network high complexity passport-project CWE-384	4.8
2022-06-28	CVE-2022-24444	Session Fixation vulnerability in Silverstripe Silverstripe silverstripe/framework through 4.10 allows Session Fixation. network low complexity silverstripe CWE-384	6.5

Vulnerabilities > Session Fixation {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Session Fixation"}]}

Vulnerabilities > Session Fixation