CVE-2013-7387
Session fixation vulnerability in DataLife Engine (DLE) 9.7 and earlier allows remote attackers to hijack web sessions via the PHPSESSID cookie.
Date published : 2014-06-02
http://dle-news.ru/bags/v97/1549-patchi-bezopasnosti-dlya-versii-97.html