Vulnerability in Dleviet Datalife_engine
CVE-2013-7387
Session fixation vulnerability in DataLife Engine (DLE) 9.7 and earlier allows remote attackers to hijack web sessions via the PHPSESSID cookie.
EPSS: 0.020 (84.2th percentile) — read the EPSS interpretation.
Affected products
- Dleviet Datalife_engine
- N/a — versions n/a
References
- cve@mitre.org (Patch, x_refsource_MISC, Vendor Advisory)
- cve@mitre.org (Exploit, x_refsource_MISC)
- 51971 (x_refsource_SECUNIA, third-party-advisory)