Description
TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 is open to a session fixation attack which allows remote attackers to hijack a victim's session.
Remediation
References
Related Vulnerabilities
WordPress Plugin StatPress Multiple Unspecified Vulnerabilities (1.4.1)
WordPress Plugin Easy Testimonials Cross-Site Scripting (3.5.2)
Plone CMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2012-5493)
Oracle Database Server CVE-2014-6563 Vulnerability (CVE-2014-6563)
WordPress Plugin Contact Bank-Contact Form Builder for WordPress Cross-Site Scripting (2.0.225)