Srtnlgn

**Name of the Vulnerable Software and Affected Versions** CodeIgniter versions prior to 4.2.11 **Description** The issue arises when an application uses multiple session cookies and a session handler is set to `DatabaseHandler`, `MemcachedHandler`, or `RedisHandler`. If an attacker obtains one session cookie, they may be able to access pages that require another session cookie. **Recommendations** For versions prior to 4.2.11, upgrade to version 4.2.11 or later. As a temporary workaround, consider using only one session cookie until the issue is resolved.