by removing the security restriction, this means anybody can access the contents update page.
You should probably put that back in.
Then try editing the WA_SecurityAssist/Helper_PHP.php file.
Change this code:
if (!isset($_SESSION)) {
session_start();
}
to:
if (!session_id()) {
session_start();
}