CVE-2007-5380

Session fixation vulnerability in Rails before 1.2.4, as used for Ruby on Rails, allows remote attackers to hijack web sessions via unspecified vectors related to "URL-based sessions."
Configurations

Configuration 1

cpe:2.3:a:david_hansson:ruby_on_rails:*:*:*:*:*:*:*:*

Information

Published : 2007-10-19 11:17

Updated : 2011-03-08 03:00


NVD link : CVE-2007-5380

Mitre link : CVE-2007-5380

Products Affected
No products.