CVE-2008-6045

Publication date

2009-02-03 11:00:00

Family

mitre

State

PUBLISHED

Description

Session fixation vulnerability in shopping_cart.php in xt:Commerce 3.0.4 and earlier allows remote attackers to hijack web sessions by setting the XTCsid parameter.