Description
When using FORM authentication with Apache Tomcat 9.0.0.M1 to 9.0.29, 8.5.0 to 8.5.49 and 7.0.0 to 7.0.98 there was a narrow window where an attacker could perform a session fixation attack. The window was considered too narrow for an exploit to be practical but, erring on the side of caution, this issue has been treated as a security vulnerability.
Remediation
References
Related Vulnerabilities
WordPress Plugin LinkedIn by BestWebSoft Cross-Site Scripting (1.0.4)
WordPress 5.5.x Multiple Vulnerabilities (5.5 - 5.5.3)
WordPress Plugin Multi Rating Multiple Vulnerabilities (5.0.5)
WordPress Plugin Stock in & out SQL Injection (1.0.4)
WordPress Plugin CYSTEME Finder, the admin files explorer Multiple Vulnerabilities (1.3)