Description
Session fixation vulnerability in Drupal 4.5.x before 4.5.8 and 4.6.x before 4.5.8 allows remote attackers to gain privileges by tricking a user to click on a URL that fixes the session identifier.
Remediation
References
Related Vulnerabilities
Java Unspesificed Vulnerability (CVE-2018-3169)
WordPress Plugin FlightLog SQL Injection (3.0.2)
WordPress Plugin Gallery-Flagallery Photo Portfolio Cross-Site Request Forgery (5.3.6)
WordPress Plugin Popup Anything-A Marketing Popup Cross-Site Scripting (2.0.3)
WordPress Plugin Comment Rating SQL Injection and Security Bypass Weakness Vulnerabilities (2.9.32)