Calimero.cms : Security Vulnerabilities, CVEs, CVSS score >= 1
Cross-site scripting (XSS) vulnerability in index.php in Calimero.CMS 3.3 allows remote attackers to inject arbitrary web script or HTML via the id parameter in a calimero_webpage action.
Max CVSS
4.3
EPSS Score
0.20%
Published
2008-02-13
Updated
2009-08-25
Session fixation vulnerability in Calimero.CMS 3.3.1232 and earlier allows remote attackers to hijack web sessions by setting the PHPSESSID parameter.
Max CVSS
7.5
EPSS Score
1.57%
Published
2007-06-06
Updated
2018-10-16
2 vulnerabilities found