Search Results (Refine Search)
- CPE Product Version: cpe:/a:cybozu:garoon:2.1.3
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2008-6570 |
Cross-site scripting (XSS) vulnerability in the RSS reader in Cybozu Garoon 2.0.0 through 2.1.3 allows remote attackers to inject arbitrary web script or HTML via a crafted RSS feed. Published: March 31, 2009; 1:30:00 PM -0400 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
CVE-2008-6569 |
Session fixation vulnerability in Cybozu Garoon 2.0.0 through 2.1.3 allows remote attackers to hijack web sessions via the session ID in the login page. Published: March 31, 2009; 1:30:00 PM -0400 |
V3.x:(not available) V2.0: 6.8 MEDIUM |