Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cybozu garoon 4.2.1 vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2017-2145
Session fixation vulnerability in Cybozu Garoon 4.0.0 to 4.2.4 allows remote malicious users to perform arbitrary operations via unspecified vectors.
Cybozu Garoon 4.0.3
Cybozu Garoon 4.0.0
Cybozu Garoon 4.2.1
Cybozu Garoon 4.2.4
Cybozu Garoon 4.0.1
Cybozu Garoon 4.2.2
Cybozu Garoon 4.0.2
Cybozu Garoon 4.2.0
Cybozu Garoon 4.2.3
5.4
CVSSv3
CVE-2017-2255
Cross-site scripting vulnerability in Cybozu Garoon 3.7.0 to 4.2.5 allows an malicious user to inject arbitrary web script or HTML via "Rich text" function of the application "Space".
Cybozu Garoon 4.0.3
Cybozu Garoon 3.7.4
Cybozu Garoon 3.7.2
Cybozu Garoon 4.2.1
Cybozu Garoon 3.7.0
Cybozu Garoon 4.2.4
Cybozu Garoon 4.0.1
Cybozu Garoon 3.7.5
Cybozu Garoon 4.2.2
Cybozu Garoon 4.0.2
Cybozu Garoon 4.2.0
Cybozu Garoon 4.2.3
Cybozu Garoon 3.7.1
Cybozu Garoon 4.2.5
Cybozu Garoon 3.7.3
4.9
CVSSv3
CVE-2017-2254
Cybozu Garoon 3.5.0 to 4.2.5 allows an malicious user to cause a denial of service in the application menu's edit function via specially crafted input
Cybozu Garoon 3.5.5
Cybozu Garoon 4.0.3
Cybozu Garoon 3.5.1
Cybozu Garoon 3.7.4
Cybozu Garoon 3.7.2
Cybozu Garoon 3.5.3
Cybozu Garoon 4.2.1
Cybozu Garoon 3.5.0
Cybozu Garoon 3.7.0
Cybozu Garoon 4.2.4
Cybozu Garoon 3.5.2
Cybozu Garoon 4.0.1
Cybozu Garoon 3.7.5
Cybozu Garoon 4.2.2
Cybozu Garoon 4.0.2
Cybozu Garoon 4.2.0
Cybozu Garoon 4.2.3
Cybozu Garoon 3.7.1
Cybozu Garoon 4.2.5
Cybozu Garoon 3.7.3
Cybozu Garoon 3.5.4
5.4
CVSSv3
CVE-2017-2144
Cybozu Garoon 3.0.0 to 4.2.4 may allow an malicious user to lock another user's file through a specially crafted page.
Cybozu Garoon 3.0.2
Cybozu Garoon 3.5.5
Cybozu Garoon 3.5.1
Cybozu Garoon 3.1.1
Cybozu Garoon 3.7.4
Cybozu Garoon 3.7
Cybozu Garoon 3.7.2
Cybozu Garoon 3.5.3
Cybozu Garoon 4.2.1
Cybozu Garoon 3.0.0
Cybozu Garoon 3.5.0
Cybozu Garoon 3.0.3
Cybozu Garoon 3.7.0
Cybozu Garoon 3.1.0
Cybozu Garoon 3.5.2
Cybozu Garoon 4.0.1
Cybozu Garoon 3.7.5
Cybozu Garoon 3.1.3
Cybozu Garoon 4.2.2
Cybozu Garoon 4.0.2
Cybozu Garoon 4.2.0
Cybozu Garoon 3.0.1
8.8
CVSSv3
CVE-2016-4907
Cybozu Garoon 3.0.0 to 4.2.2 allow remote malicious users to obtain CSRF tokens via unspecified vectors.
Cybozu Garoon 3.0.2
Cybozu Garoon 3.5.5
Cybozu Garoon 4.0.3
Cybozu Garoon 3.5.1
Cybozu Garoon 4.0.0
Cybozu Garoon 3.1.1
Cybozu Garoon 3.7.4
Cybozu Garoon 3.7.2
Cybozu Garoon 3.5.3
Cybozu Garoon 4.2.1
Cybozu Garoon 3.0.0
Cybozu Garoon 3.5.0
Cybozu Garoon 3.0.3
Cybozu Garoon 3.7.0
Cybozu Garoon 3.1.0
Cybozu Garoon 3.5.2
Cybozu Garoon 4.0.1
Cybozu Garoon 3.7.5
Cybozu Garoon 3.1.3
Cybozu Garoon 4.2.2
Cybozu Garoon 4.0.2
Cybozu Garoon 4.2.0
4.3
CVSSv3
CVE-2016-4908
Cybozu Garoon 3.0.0 to 4.2.2 allows remote authenticated malicious users to bypass access restriction to alter or delete another user's private RSS settings via unspecified vectors.
Cybozu Garoon 3.0.2
Cybozu Garoon 3.5.5
Cybozu Garoon 4.0.3
Cybozu Garoon 3.5.1
Cybozu Garoon 4.0.0
Cybozu Garoon 3.1.1
Cybozu Garoon 3.7.4
Cybozu Garoon 3.7.2
Cybozu Garoon 3.5.3
Cybozu Garoon 4.2.1
Cybozu Garoon 3.0.0
Cybozu Garoon 3.5.0
Cybozu Garoon 3.0.3
Cybozu Garoon 3.7.0
Cybozu Garoon 3.1.0
Cybozu Garoon 3.5.2
Cybozu Garoon 4.0.1
Cybozu Garoon 3.7.5
Cybozu Garoon 3.1.3
Cybozu Garoon 4.2.2
Cybozu Garoon 4.0.2
Cybozu Garoon 4.2.0
8.8
CVSSv3
CVE-2016-7803
SQL injection vulnerability in the Cybozu Garoon 3.0.0 to 4.2.2 allows remote authenticated malicious users to execute arbitrary SQL commands via "MultiReport" function.
Cybozu Garoon 3.0.2
Cybozu Garoon 3.5.5
Cybozu Garoon 4.0.3
Cybozu Garoon 3.5.1
Cybozu Garoon 4.0.0
Cybozu Garoon 3.1.1
Cybozu Garoon 3.7.4
Cybozu Garoon 3.7.2
Cybozu Garoon 3.5.3
Cybozu Garoon 4.2.1
Cybozu Garoon 3.0.0
Cybozu Garoon 3.5.0
Cybozu Garoon 3.0.3
Cybozu Garoon 3.7.0
Cybozu Garoon 3.1.0
Cybozu Garoon 3.5.2
Cybozu Garoon 4.0.1
Cybozu Garoon 3.7.5
Cybozu Garoon 3.1.3
Cybozu Garoon 4.2.2
Cybozu Garoon 4.0.2
Cybozu Garoon 4.2.0
6.1
CVSSv3
CVE-2016-4906
Cross-site scripting vulnerability in Cybozu Garoon 3.0.0 to 4.2.2 allows remote malicious users to inject arbitrary web script or HTML via "Messages" function of Cybozu Garoon Keitai.
Cybozu Garoon 3.0.2
Cybozu Garoon 3.5.5
Cybozu Garoon 4.0.3
Cybozu Garoon 3.5.1
Cybozu Garoon 4.0.0
Cybozu Garoon 3.1.1
Cybozu Garoon 3.7.4
Cybozu Garoon 3.7.2
Cybozu Garoon 3.5.3
Cybozu Garoon 4.2.1
Cybozu Garoon 3.0.0
Cybozu Garoon 3.5.0
Cybozu Garoon 3.0.3
Cybozu Garoon 3.7.0
Cybozu Garoon 3.1.0
Cybozu Garoon 3.5.2
Cybozu Garoon 4.0.1
Cybozu Garoon 3.7.5
Cybozu Garoon 3.1.3
Cybozu Garoon 4.2.2
Cybozu Garoon 4.0.2
Cybozu Garoon 4.2.0
4.3
CVSSv3
CVE-2016-4909
Cross-site request forgery (CSRF) vulnerability in Cybozu Garoon 3.0.0 to 4.2.2 allows remote malicious users to hijack the authentication of a logged in user to force a logout via unspecified vectors.
Cybozu Garoon 3.0.2
Cybozu Garoon 3.5.5
Cybozu Garoon 4.0.3
Cybozu Garoon 3.5.1
Cybozu Garoon 4.0.0
Cybozu Garoon 3.1.1
Cybozu Garoon 3.7.4
Cybozu Garoon 3.7.2
Cybozu Garoon 3.5.3
Cybozu Garoon 4.2.1
Cybozu Garoon 3.0.0
Cybozu Garoon 3.5.0
Cybozu Garoon 3.0.3
Cybozu Garoon 3.7.0
Cybozu Garoon 3.1.0
Cybozu Garoon 3.5.2
Cybozu Garoon 4.0.1
Cybozu Garoon 3.7.5
Cybozu Garoon 3.1.3
Cybozu Garoon 4.2.2
Cybozu Garoon 4.0.2
Cybozu Garoon 4.2.0
4.3
CVSSv3
CVE-2016-4910
Cybozu Garoon 3.0.0 to 4.2.2 allows remote authenticated malicious users to bypass access restriction to delete other operational administrators' MultiReport filters via unspecified vectors.
Cybozu Garoon 3.0.2
Cybozu Garoon 3.5.5
Cybozu Garoon 4.0.3
Cybozu Garoon 3.5.1
Cybozu Garoon 4.0.0
Cybozu Garoon 3.1.1
Cybozu Garoon 3.7.4
Cybozu Garoon 3.7.2
Cybozu Garoon 3.5.3
Cybozu Garoon 4.2.1
Cybozu Garoon 3.0.0
Cybozu Garoon 3.5.0
Cybozu Garoon 3.0.3
Cybozu Garoon 3.7.0
Cybozu Garoon 3.1.0
Cybozu Garoon 3.5.2
Cybozu Garoon 4.0.1
Cybozu Garoon 3.7.5
Cybozu Garoon 3.1.3
Cybozu Garoon 4.2.2
Cybozu Garoon 4.0.2
Cybozu Garoon 4.2.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »