cve/CVE-2010-0756.md at eb8fb22b51df9332dc1ec68d0bcaedfdbefed8cd

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-12-16 20:27:21 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

Session fixation vulnerability in WikyBlog 1.7.3 rc2 allows remote attackers to hijack web sessions by setting the jsessionid parameter to (1) index.php/Comment/Main, (2) index.php/Comment/Main/Home_Wiky, or (3) index.php/Edit/Main.

POC

Reference

http://packetstormsecurity.org/1002-exploits/wikyblog-rfishellxss.txt

Github

No PoCs found on GitHub currently.

722 B Raw Blame History

CVE-2010-0756

Description

POC

Reference

Github

722 B

Raw Blame History