Search Results | AttackerKB

Show filters

Clear All

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

2 Total Results

Displaying 1-2 of 2

Attacker Value

Unknown

CVE-2022-36179

Disclosure Date: November 22, 2022 (last updated February 24, 2025)

Fusiondirectory 1.3 suffers from Improper Session Handling.

Attacker Value

Unknown

CVE-2022-36180

Disclosure Date: November 22, 2022 (last updated February 24, 2025)

Fusiondirectory 1.3 is vulnerable to Cross Site Scripting (XSS) via /fusiondirectory/index.php?message=[injection], /fusiondirectory/index.php?message=invalidparameter&plug={Injection], /fusiondirectory/index.php?signout=1&message=[injection]&plug=106.

Attack Vector: Network Privileges: None User Interaction: Required

2 Total Results

Displaying 1-2 of 2

Unknown

CVE-2022-36179

Unknown

CVE-2022-36180

Quick Cookie Notification