← CVECheck
HomeVulnerabilities

CVE-2002-0121 — LOW severity vulnerability (PHP 4.0 through 4.1.1 stores session IDs in temporary files)

PHP 4.0 through 4.1.1 stores session IDs in temporary files whose name contains the session ID, which allows local users to hijack web connections.

CVE IDCVE-2002-0121
SeverityLOW
CVSS score2.1
CVSS vectorAV:L/AC:L/Au:N/C:P/I:N/A:N
CWENVD-CWE-Other
StatusModified
Published2002-03-25
Last modified2026-04-16
DescriptionPHP 4.0 through 4.1.1 stores session IDs in temporary files whose name contains the session ID, which allows local users to hijack web connections.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →