CVE-2022-36179 - FusionDirectory 1.3’s Improper Session Handling Exposed
FusionDirectory is a popular web-based system designed to manage LDAP directories. Being open source, it’s trusted by organizations to coordinate user accounts, permissions, and
CVE-2022-36180 - Exploiting XSS in Fusiondirectory 1.3 via Malicious Message Parameters
---
Fusiondirectory is a popular open-source web-based directory management solution, often used atop OpenLDAP. In September 2022, a serious security vulnerability — CVE-2022-36180 — was publicly disclosed.