Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-384

CWE-384

Session Fixation

Parent: CWE-610 - Externally Controlled Reference to a Resource in Another Sphere

Authenticating a user, or otherwise establishing a new user session, without invalidating any existing session identifier gives an attacker the opportunity to steal authenticated sessions.

392 vulnerabilities with CWE-384

CVE-2020-15018 MEDIUM

playSMS <1.4.3 - Session Fixation

CVE-2020-4229 HIGH

IBM Worklight/MobileFoundation 8.0.0.0 - Privilege Escalation

CVE-2020-13229 HIGH

Sysax Multi Server 6.90 - Info Disclosure

CVE-2020-8434 CRITICAL

Jenzabar JICS <9.0.1-9.2.2 - Info Disclosure

CVE-2020-12258 CRITICAL

rConfig 3.9.4 - Session Fixation

CVE-2020-1993 LOW

PAN-OS <8.1.14, <9.0.8 - Session Fixation

CVE-2020-5894 HIGH

NGINX Controller <3.3.0 - Info Disclosure

CVE-2020-12467 MEDIUM

Subrion CMS 4.2.1 - Session Fixation

CVE-2020-1762 HIGH

Kiali <1.15.0 - Auth Bypass

CVE-2020-6824 LOW

Firefox < 75 - Info Disclosure

CVE-2020-11729 CRITICAL

DAViCal AWL <0.60 - Info Disclosure

CVE-2020-11728 HIGH

DAViCal AWL <0.60 - Info Disclosure

CVE-2020-8826 HIGH

Argo <1.5.0 - Info Disclosure

CVE-2020-4291 MEDIUM

IBM Security Information Queue <1.0.6 - Info Disclosure

CVE-2020-5550 HIGH

EasyBlocks IPv6 <2.0.1 & Enterprise <2.0.1 - Privilege Escalation

CVE-2020-5290 MEDIUM

Ctfd Rctf < 2.3 - XSS

CVE-2020-5543 CRITICAL

Mitsubishi Electric MELQIC IU1 <1.0.7 - DoS

CVE-2020-9370 CRITICAL

HUMAX HGA12R-02 BRGCAA 1.1.53 - SSRF

CVE-2020-8990 CRITICAL

Western Digital My Cloud Home <3.6.0 - SSRF

CVE-2020-5205 MEDIUM

Pow <1.0.16 - Session Fixation

CVE-2019-18946 MEDIUM

Micro Focus Solutions Business Manager Application Repository <11.7...

CVE-2019-4563 MEDIUM

IBM Security Directory Server 6.4.0 - Open Redirect

CVE-2019-4591 HIGH

IBM Maximo Asset Mgmt <7.6.1 - Privilege Escalation

CVE-2019-19610 MEDIUM

Halvotec RaQuest <10.23.10801.0 - Session Fixation

CVE-2019-4617 MEDIUM

IBM Cloud Automation Manager <3.2.1.0 - Info Disclosure

Previous Page 10 of 16 Next

Details

Vulnerabilities 392

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy