CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Bea Systems: >> Weblogic Express >> 10.0 Security Vulnerabilities

CVE-2008-0900

Session fixation vulnerability in BEA WebLogic Server and Express 8.1 SP4 through SP6, 9.2 through MP1, and 10.0 allows remote authenticated users to hijack web sessions via unknown vectors.

CVSS Score

6.0

EPSS Score

0.045

Published

2008-02-22

Page 1

Vulnerabilities

Vulnerable Software

Bea Systems: >> Weblogic Express >> 10.0 Security Vulnerabilities

Products

Pricing

Contact Us