Unspecified vulnerability in Default.aspx in Podium CMS allows remote attackers to have an unknown impact, possibly session fixation, via a META HTTP-EQUIV Set-cookie expression in the id parameter, related to "cookie manipulation." NOTE: this issue might be cross-site scripting (XSS).
References
Configurations
History
21 Nov 2024, 00:31
Type | Values Removed | Values Added |
---|---|---|
References | () http://osvdb.org/36182 - | |
References | () http://securityreason.com/securityalert/2664 - | |
References | () http://www.securityfocus.com/archive/1/467823/100/0/threaded - | |
References | () http://www.securityfocus.com/archive/1/468058/100/0/threaded - |
Information
Published : 2007-05-09 17:19
Updated : 2024-11-21 00:31
NVD link : CVE-2007-2555
Mitre link : CVE-2007-2555
CVE.ORG link : CVE-2007-2555
JSON object : View
Products Affected
podium_cms
- podium_cms
CWE
CWE-287
Improper Authentication