CVE-2013-7387 Information

Description

Session fixation vulnerability in DataLife Engine (DLE) 9.7 and earlier allows remote attackers to hijack web sessions via the PHPSESSID cookie.

Reference

http://dle-news.ru/bags/v97/1549-patchi-bezopasnosti-dlya-versii-97.html http://en.securitylab.ru/lab/PT-2012-53 http://secunia.com/advisories/51971