2 results (0.002 seconds)

CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0

eRoom does not set an expiration for Cookies, which allows remote attackers to capture cookies and conduct replay attacks. • http://marc.info/?l=bugtraq&m=112069267700034&w=2 •

CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0

eRoom 6.x does not properly restrict files that can be attached, which allows remote attackers to execute arbitrary commands via a .lnk file. • http://marc.info/?l=bugtraq&m=112069267700034&w=2 http://secunia.com/advisories/15940 •