Kapi zionspike

## main.dart
import 'dart:io';
import 'package:dio/adapter.dart';
import 'package:dio/dio.dart';

void main() async {
  BaseOptions options = BaseOptions(
    baseUrl: "https://httpbin.org",
    connectTimeout: 3000,
    receiveTimeout: 3000,
  );

## CVE-2018-18380.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              1 star
            
          
                zionspike
                / CVE-2018-18380.md
            
            
              Last active
              January 22, 2019 09:14
            
          
    Session Fixation in BigTree CMS 4.2.23 and earlier (CVE-2018-18380)

Description

A Session Fixation issue was discovered in Bigtree 4.2.23 and earlier.
The PHP session id has not been generated after loggin. File core/inc/bigtree/admin.php accepts a user-provided PHP session ID instead of regenerating a new one after a user has logged in to the application. The Session Fixation could allow an attacker to hijack an admin
session.
Additional Information


Vendor website: https://www.bigtreecms.org/about/
	import 'dart:io';
	import 'package:dio/adapter.dart';
	import 'package:dio/dio.dart';

	void main() async {
	BaseOptions options = BaseOptions(
	baseUrl: "https://httpbin.org",
	connectTimeout: 3000,
	receiveTimeout: 3000,
	);