Unrated severityNVD Advisory· Published Jul 2, 2021· Updated Aug 4, 2024
CVE-2020-23178
CVE-2020-23178
Description
An issue exists in PHP-Fusion 9.03.50 where session cookies are not deleted once a user logs out, allowing for an attacker to perform a session replay attack and impersonate the victim user.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- PHP-Fusion/PHP-Fusiondescription
- Range: = 9.03.50
Patches
Vulnerability mechanics
References
1- github.com/PHPFusion/PHPFusion/issues/2314mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.