CVE-2009-3657

2009-10-0914:18:00

mitre

www.cve.org

AI Score

6.7

Confidence

Low

EPSS

0.003

Percentile

68.7%

JSON

Session fixation vulnerability in Shared Sign-On 5.x and 6.x, a module for Drupal, allows remote attackers to hijack web sessions via unspecified vectors.

References

drupal.org/node/592488

www.securityfocus.com/bid/36563

exchange.xforce.ibmcloud.com/vulnerabilities/53560