CVE-2019-12203

Published: Sep 25, 2019
Updated: May 9, 2024
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2019-12203" target="_blank" rel="noopener"> CVE-2019-12203
GHSA: <a href="https://github.com/advisories/GHSA-w7r7-r8r9-vrg2" target="_blank" rel="noopener"> GHSA-w7r7-r8r9-vrg2
Severity: Medium
Exploit:

SilverStripe through 4.3.3 allows session fixation in the "change password" form.

CVSS v3:

CVSS v2:

CWEs:

OWASP TOP 10:

Vulnerability Database