1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
|
PublicDate: 2006-03-14
Candidate: CVE-2006-1228
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1228
Description:
Session fixation vulnerability in Drupal 4.5.x before 4.5.8 and 4.6.x
before 4.5.8 allows remote attackers to gain privileges by tricking a user
to click on a URL that fixes the session identifier.
Ubuntu-Description:
Notes:
Bugs:
dapper_drupal: released (4.5.8-1)
edgy_drupal: released (4.5.8-1)
feisty_drupal: needed (reached end-of-life)
gutsy_drupal: DNE
hardy_drupal: DNE
devel_drupal: DNE
upstream_drupal:
|