Security Advisories - PKSA-wh2k-pccc-jn5p - Packagist

PKSA-wh2k-pccc-jn5p Security Advisory

[MEDIUM] CVE-2019-12203: Session fixation in "change password" form

PKSA-wh2k-pccc-jn5p CVE-2019-12203 GHSA-w7r7-r8r9-vrg2

Affected package: silverstripe/framework

Affected version: >=3.6.0,<3.6.8|>=3.7.0,<3.7.4|>=4.0.0,<4.3.5|>=4.4.0,<4.4.4

Reported by:
GitHub, FriendsOfPHP/security-advisories