Is this vulnerability remotely exploitable?

Yes. An attacker can exploit this remotely by crafting links or requests that set a chosen session ID and convincing victims or integrated systems to interact with the application using that session, especially around login.

Does this vulnerability require authenticated access to exploit?

The attacker does not need to be authenticated initially. They typically predefine a session ID for an unauthenticated user, then wait for the victim to authenticate under that fixed session, at which point the attacker can reuse the same session ID to access the victim's account.

What is the safest general fix pattern for this issue?

The safest pattern is to prevent any user input from influencing the session ID, centralize session handling in the framework or platform's standard mechanisms, and always regenerate the session identifier on authentication or privilege changes.

Severity:

HIGH RISK

(7.5)

Session Fixation (CWE-384) in Chamilo LMS AICC HACP Handler

CVE-2026-31940

Published:

Apr 10, 2026

Status:

Received

Summary

Affected Context

Exploit Preconditions

Why This Happens

Potential Impact

General Mitigation Guidance

How Teams Detect Issues Like This

Frequently Asked Questions

Source

NDV

Recent Vulnerabilities

CWE-77;CWE-78

CRITICAL RISK

CRITICAL

(9.8)

OS Command Injection (CWE-78) in Totolink A7100RU CGI Handler setAccessDeviceCfg

Remote Code Execution on the Router

April 12, 2026

CWE-77;CWE-78

CRITICAL RISK

CRITICAL

(9.8)

OS Command Injection (CWE-78) in Totolink A7100RU CGI setLedCfg Handler

Remote Code Execution on the Router

April 12, 2026

Vulnerability Type

Category:

Session Management Vulnerability

CWE:

CWE-384

Impact:

Session Hijacking / Account Compromise

Severity:

HIGH RISK

(7.5)

CVSS Version:

3.1

Vulnerability Type

Category:

Session Management Vulnerability

CWE:

CWE-384

Impact:

Session Hijacking / Account Compromise

Severity:

HIGH RISK

(7.5)

CVSS Version:

3.1

Catch This CVE While Code Is Being Written

Detect vulnerable code directly in pull requests, so CVEs are fixed before merge.

Get Started

Ship clean & secure code faster

START 14 DAYS FREE TRIAL

BOOK A DEMO

Made with Love in San Francisco

355 Bryant St. San Francisco, CA 94107, USA

Ask AI for summary of CodeAnt

Made with Love in San Francisco

355 Bryant St. San Francisco, CA 94107, USA

Ask AI for summary of CodeAnt

Made with Love in San Francisco

355 Bryant St. San Francisco, CA 94107, USA

Ask AI for summary of CodeAnt

Session Fixation (CWE-384) in Chamilo LMS AICC HACP Handler

Summary

Affected Context

Exploit Preconditions

Why This Happens

Potential Impact

General Mitigation Guidance

How Teams Detect Issues Like This

Frequently Asked Questions

Source

Recent Vulnerabilities

CRITICAL RISK

CRITICAL

(9.8)

OS Command Injection (CWE-78) in Totolink A7100RU CGI Handler setAccessDeviceCfg

CRITICAL RISK

CRITICAL

(9.8)

OS Command Injection (CWE-78) in Totolink A7100RU CGI setLedCfg Handler

Vulnerability Type

Vulnerability Type

Vulnerability Type

Catch This CVE While Code Is Being Written

Ship clean & secure code faster

Product

Pricing

Company

Legal

Developers

Compare

Product

Pricing

Company

Legal

Developers

Compare

Product

Pricing

Company

Legal

Developers

Compare