Fallos del tipo CWE-384
221 resultadosCVE-2024-57052CRITICALAn issue in youdiancms v.9.5.20 and before allows a remote attacker to escalate privileges via the sessionID parameter in the index.php fileEPSS 0.5%CVE-2025-27661CRITICALVasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application 20.0.1923 allows Session Fixation OVE-20230524-0004.EPSS 0.5%CVE-2022-30769MEDIUMSession fixation exists in ZoneMinder through 1.36.12 as an attacker can poison a session cookie to the next logged-in user.EPSS 0.5%CVE-2020-15679HIGHAn OAuth session fixation vulnerability existed in the VPN login flow, where an attacker could craft a custom login URL, convince a VPN userEPSS 0.5%CVE-2023-0897HIGHSession FIxation in Sielco PolyEco1000EPSS 0.5%CVE-2023-52353HIGHAn issue was discovered in Mbed TLS through 3.5.1. In mbedtls_ssl_session_reset, the maximum negotiable TLS version is mishandled. For exampEPSS 0.5%CVE-2026-33946HIGHMCP Ruby SDK: Insufficient Session Binding Allows SSE Stream Hijacking via Session ID ReplayEPSS 0.5%CVE-2025-45949CRITICALA critical vulnerability was found in PHPGurukul User Registration & Login and User Management System V3.3 in the /loginsystem/change-passwoEPSS 0.5%CVE-2025-67446CRITICALImproper Authentication (Authentication Bypass) exists in Neterbit NW-431F Router 20241014-IR03 and before. The router uses a weak/predictabEPSS 0.5%CVE-2026-22082HIGHInsecure Session ID Management Vulnerability in Tenda Wireless RoutersEPSS 0.5%CVE-2024-8643CRITICALSession Hijacking in Oceanic Software's ValeAppEPSS 0.4%CVE-2023-53776HIGHScreen SFT DAB 1.9.3 Authentication Bypass via Session Management WeaknessEPSS 0.4%CVE-2022-4231MEDIUMTribal Systems Zenario CMS Remember Me session fixiationEPSS 0.4%CVE-2024-13279CRITICALTwo-factor Authentication (TFA) - Critical - Access bypass - SA-CONTRIB-2024-043EPSS 0.4%CVE-2024-13967CRITICALession-Management FailureEPSS 0.4%CVE-2025-53102HIGHDiscourse's WebAuthn challenge isn't cleared from user session after authenticationEPSS 0.4%CVE-2020-1993LOWPAN-OS: GlobalProtect Portal PHP session fixation vulnerabilityEPSS 0.4%CVE-2024-2260MEDIUMSession Fixation Vulnerability in zenml-io/zenmlEPSS 0.4%CVE-2023-3192MEDIUMSession Fixation in froxlor/froxlorEPSS 0.4%CVE-2024-11317CRITICALPHP Session FixationEPSS 0.4%