Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

PHP Other Vulnerability (CVE-2002-0121)

Description

PHP 4.0 through 4.1.1 stores session IDs in temporary files whose name contains the session ID, which allows local users to hijack web connections.

Remediation

References

Related Vulnerabilities

phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6625)

WordPress Plugin Service Finder-Provider and Business Listing Local File Disclosure (3.0)

Liferay Portal Insecure Default Initialization of Resource Vulnerability (CVE-2023-33949)

WordPress Plugin ecSTATic Arbitrary File Upload (0.9933)

SharePoint CVE-2024-43466 Vulnerability (CVE-2024-43466)

Severity

Low

Classification

CVE-2002-0121

Tags

Missing Update Known Vulnerabilities