mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-07 11:06:19 +00:00
717 B
717 B
CVE-2020-23178
Description
An issue exists in PHP-Fusion 9.03.50 where session cookies are not deleted once a user logs out, allowing for an attacker to perform a session replay attack and impersonate the victim user.
POC
Reference
- https://github.com/PHPFusion/PHPFusion/issues/2314
- https://github.com/PHPFusion/PHPFusion/issues/2314
Github
No PoCs found on GitHub currently.