Auth bypass in Jetbox Jetbox_cms

CVE-2006-3583

Session fixation vulnerability in Jetbox CMS 2.1 SR1 allows remote attackers to hijack web sessions via a crafted link and the administrator section.

Vulnerability class: Broken Authentication

EPSS: 0.017 (74.5th percentile) — read the EPSS interpretation.