Lucene search
FutomiAccess Analyzer Cgi3.6
2 matches found
CVE-2009-0971
Cross-site scripting (XSS) vulnerability in futomi's CGI Cafe Access Analyzer CGI Standard Version 3.8.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
4.3CVSS5.8AI score0.00545EPSS
CVE-2008-5809
futomi CGI Cafe Access Analyzer CGI Standard 4.0.1 and earlier and Access Analyzer CGI Professional 4.11.3 and earlier use a predictable session id, which makes it easier for remote attackers to hijack sessions, and obtain sensitive information about analysis results, via a modified id.
5.8CVSS6.3AI score0.00285EPSS