VYPR
Medium severity6.1NVD Advisory· Published Mar 13, 2017· Updated Jun 17, 2026

CVE-2017-6807

CVE-2017-6807

Description

mod_auth_mellon before 0.13.1 is vulnerable to a Cross-Site Session Transfer attack, where a user with access to one web site running on a server can copy their session cookie to a different web site on the same server to get access to that site.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

1

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.