An issue exists in PHP-Fusion 9.03.50 where session cookies are not deleted once a user logs out, allowing for an malicious user to perform a session replay attack and impersonate the victim user.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
php-fusion php-fusion 9.03.50 |