Description
Session fixation vulnerability in the authentication library in TYPO3 4.0.0 through 4.0.9, 4.1.0 through 4.1.7, and 4.2.0 through 4.2.3 allows remote attackers to hijack web sessions via unspecified vectors related to (1) frontend and (2) backend authentication.
Remediation
References
Related Vulnerabilities
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4592)
WordPress Plugin Autoship Cloud PHP Object Injection (1.0.13)
WordPress Plugin Essential Addons for Elementor Cross-Site Scripting (5.0.8)
Java Denial of Service (DoS) Vulnerability (CVE-2018-11212)
Jboss EAP Improper Input Validation Vulnerability (CVE-2014-0034)