CVE-2016-4309

HIGH

Symphony CMS 2.6.7 - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2016-4309. PoCs published by hyp3rlinx.

AI-analyzed exploit summary This is a detailed writeup describing a session fixation vulnerability in Symphony CMS v2.6.7. The vulnerability allows attackers to preset a user's PHPSESSID if session.use_only_cookies is disabled, as the application does not regenerate session IDs upon authentication.

Description

Session fixation vulnerability in Symphony CMS 2.6.7, when session.use_only_cookies is disabled, allows remote attackers to hijack web sessions via the PHPSESSID parameter.

Exploits (1)

exploitdb WRITEUP

by hyp3rlinx · textwebappsphp

https://www.exploit-db.com/exploits/39983

View Code ZIP pw:eip

This is a detailed writeup describing a session fixation vulnerability in Symphony CMS v2.6.7. The vulnerability allows attackers to preset a user's PHPSESSID if session.use_only_cookies is disabled, as the application does not regenerate session IDs upon authentication.

Classification

Writeup 100%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Symphony CMS v2.6.7

No auth needed

Prerequisites: PHP.INI setting 'session.use_only_cookies=0' · Victim must authenticate using attacker-provided link

MITRE ATT&CK