CVE-2009-10007

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Catalyst::Plugin::Authentication versions before 0.10 027 for Perl is susceptible to session fixation attacks.

Catalyst::Plugin::Authentication does not automatically change the session id after authentication. An attacker that obtains a session id cookie can use this to impersonate the victim.

Session Fixation

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-384

Related Identifiers

CVE-2009-10007

Affected Products

Undefined

CVE-2009-10007

Weakness Enumeration

Related Identifiers

Affected Products

References · 5