32 matches found
CVE-2009-0469
Unspecified vulnerability in futomi's CGI Cafe Fulltext search CGI 1.1.2 allows remote attackers to gain administrative privileges via unknown vectors...
Design/Logic Flaw
Unspecified vulnerability in futomi's CGI Cafe Fulltext search CGI 1.1.2 allows remote attackers to gain administrative privileges via unknown vectors...
CVE-2009-0469
The CVE-2009-0469 issue affects futomi’s CGI Cafe Fulltext search CGI (ver. 1.1.2). A vulnerability in Fulltext search CGI allows a remote attacker to gain administrative privileges, effectively impersonating an administrator. The underlying vectors are not specified in the base CVE description; ...
JVN#80771386 Fulltext search CGI vulnerability allows third party to gain administrative privileges
Fulltext search CGI is a website search software from futomi's CGI Cafe. Fulltext search CGI contains a vulnerability that allows an attacker to gain administrative privileges. Impact A remote attacker could impersonate an administrator of fulltext search CGI. Solution Update the Software Update ...
Design/Logic Flaw
futomi CGI Cafe Access Analyzer CGI Standard 4.0.1 and earlier and Access Analyzer CGI Professional 4.11.3 and earlier use a predictable session id, which makes it easier for remote attackers to hijack sessions, and obtain sensitive information about analysis results, via a modified id...
CVE-2008-5809
The CVE-2008-5809 affects futomi CGI Cafe’s Access Analyzer CGI: Standard v4.0.1 and earlier and Professional v4.11.3 and earlier, where a predictable session ID enables remote attackers to hijack sessions and view analysis results. Root cause: predictable session identifiers. Impact: partial dis...
JVN#07468800 Predictable session ID vulnerability in Access Analyzer CGI by futomi's CGI Cafe
Access Analyzer CGI provided by futomi's CGI Cafe is a software to analyze web access logs. Access Analyzer CGI contains a predictable session ID vulnerability. Impact A remote attacker could impersonate an administrator of Access Analyzer CGI. As a result, a remote attacker could view access...
Fulltext search CGI from futomi's CGI Cafe vulnerable to cross-site scripting
Overview Fulltext search CGI from futomi's CGI Cafe contains a cross-site scripting vulnerability. Fulltext search CGI, website search software from futomi's CGI Cafe, contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. Solution...
JVN#43091983 Fulltext search CGI from futomi's CGI Cafe vulnerable to cross-site scripting
Fulltext search CGI, website search software from futomi's CGI Cafe, contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. Solution Update the Software Apply the latest updates provided by the vendor. Products Affected Ver 1.1.0 and...
CVE-2006-7111
Unspecified vulnerability in Futomi's CGI Cafe KMail CGI 1.0.3 and earlier allows remote attackers to bypass authentication and obtain unauthorized email access via unspecified vectors...
CVE-2006-7111
Unspecified vulnerability in Futomi's CGI Cafe KMail CGI 1.0.3 and earlier allows remote attackers to bypass authentication and obtain unauthorized email access via unspecified vectors...
CVE-2006-7111
The CVE-2006-7111 issue affects Futomi’s CGI Cafe KMail CGI 1.0.3 and earlier. A vulnerability in the KMail CGI authentication flow allows a remote attacker to bypass user authentication, potentially viewing or deleting emails. The connected JVN entry confirms an authentication bypass, with no re...