Vulnerability CVE-2022-44788
Published: 2022-11-21   Modified: 2022-11-22

Description:
An issue was discovered in Appalti & Contratti 9.12.2. It allows Session Fixation. When a user logs in providing a JSESSIONID cookie that is issued by the server at the first visit, the cookie value is not updated after a successful login.

 References:
https://members.backbox.org/maggioli-appalti-contratti-multiple-vulnerabilities/
Copyright 2026, cxsecurity.com

 

Back to Top