Unrated severityNVD Advisory· Published Apr 3, 2009· Updated Jun 16, 2026

CVE-2008-6599

Description

cookiecheck.php in CookieCheck 1.0 stores tmp/cc_sessions under the web root with insufficient access control, which allows remote attackers to obtain session data via a direct request related to the "default session save path."

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Jath Pala/Cookiecheck
cpe:2.3:a:jath_pala:cookiecheck:1.0:*:*:*:*:*:*:*
Cookiecheck/CookieCheckllm-create
Range: = 1.0

Patches

Vulnerability mechanics

References

code.google.com/p/cookiecheck/nvdExploitPatchVendor Advisory
code.google.com/p/cookiecheck/source/browse/patches/cookiecheck-1.0-security-fix-1.patchnvdExploitPatch
osvdb.org/48865nvd
exchange.xforce.ibmcloud.com/vulnerabilities/49827nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000