In Apache Tomcat, when using FORM authentication there was a narrow window where an attacker could perform a session fixation attack
High severity
GitHub Reviewed
Published
Dec 26, 2019
to the GitHub Advisory Database
•
Updated Jan 28, 2023
Give feedback on Dependabot alerts