CVE-2002-0121 — LOW severity vulnerability (PHP 4.0 through 4.1.1 stores session IDs in temporary files)
PHP 4.0 through 4.1.1 stores session IDs in temporary files whose name contains the session ID, which allows local users to hijack web connections.
| CVE ID | CVE-2002-0121 |
|---|---|
| Severity | LOW |
| CVSS score | 2.1 |
| CVSS vector | AV:L/AC:L/Au:N/C:P/I:N/A:N |
| CWE | NVD-CWE-Other |
| Status | Modified |
| Published | 2002-03-25 |
| Last modified | 2026-04-16 |
| Description | PHP 4.0 through 4.1.1 stores session IDs in temporary files whose name contains the session ID, which allows local users to hijack web connections. |
| Source | NIST National Vulnerability Database |
🔍 Search all vulnerabilities →
$999/mo
Try CVECheck →