Garoon Security Vulnerabilities and Issues — Garoon CVE List

Lucene search

CybozuGaroon

2 matches found

CVE•added 2009/03/31 5:30 p.m.•48 views

CVE-2008-6570

Cross-site scripting (XSS) vulnerability in the RSS reader in Cybozu Garoon 2.0.0 through 2.1.3 allows remote attackers to inject arbitrary web script or HTML via a crafted RSS feed.

4.3CVSS5.7AI score0.00545EPSS

CVE•added 2009/03/31 5:30 p.m.•38 views

CVE-2008-6569

Session fixation vulnerability in Cybozu Garoon 2.0.0 through 2.1.3 allows remote attackers to hijack web sessions via the session ID in the login page.

6.8CVSS6.9AI score0.00874EPSS