CVE-2009-2165

Metadata

CVE-2009-2165
7.5
jvn.jp, jvndb.jvn.jp, serenebach.net, securityfocus.com
2009-06-22
2017-06-06 20:20

Description

SerendipityNZ (aka SimpleBoxes) Serene Bach 2.20R and earlier, and 3.00 beta023 and earlier 3.x versions, uses a predictable session id, which makes it easier for remote attackers to hijack sessions via a modified id.

Related Vulnerabilities