2008-07-31 22:00:00
mitre
PUBLISHED
Session fixation vulnerability in phpFreeChat 1.1 allows remote authenticated users to hijack web sessions by setting the session_id parameter to match the victims nickid parameter.