VDB

GCVE-110-MAGEIA-2023-352

GCVE-110-MAGEIA-2023-352
Advisory Published
Vulnetix · Advisory published December 19, 2023
The updated packages fix security vulnerabilities: Fusiondirectory 1.3 suffers from Improper Session Handling. (CVE-2022-36179) Fusiondirectory 1.3 is vulnerable to Cross Site Scripting (XSS) via /fusiondirectory/index.php?message=[injection], /fusiondirectory/index.php?message=invalidparameter&plug={Injection], /fusiondirectory/index.php?signout=1&message=[injection]&plug=106. (CVE-2022-36180)

Affected Products

VendorProductVersionsPlatforms
Mageiafusiondirectory0 (affected), 1.3.1-1.2.mga8 (unaffected)
Mageiafusiondirectory0 (affected), 1.3.1-1.2.mga9 (unaffected)

Browse GCVE Records

72,664 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›