CVE-2007-3988
Session fixation vulnerability in Virtual Hosting Control System (VHCS) 2.4.7.1 and earlier allows remote attackers to hijack web sessions by setting the PHPSESSID parameter.
Date published : 2007-07-25
http://www.securityfocus.com/bid/25006
http://www.securityfocus.com/archive/1/474324/100/0/threaded