An issue exists in BACKCLICK Professional 5.9.63. Due to an unsafe implementation of session tracking, it is possible for an malicious user to trick users into opening an authenticated user session for a session identifier known to the attacker, aka Session Fixation.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
backclick backclick 5.9.63 |