Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cybozu garoon 4.2.2 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2016-1219
Cybozu Garoon prior to 4.2.2 allows remote malicious users to bypass login authentication via vectors related to API use.
Cybozu Garoon
8.8
CVSSv3
CVE-2016-4907
Cybozu Garoon 3.0.0 to 4.2.2 allow remote malicious users to obtain CSRF tokens via unspecified vectors.
Cybozu Garoon 3.0.2
Cybozu Garoon 3.0.3
Cybozu Garoon 3.1.0
Cybozu Garoon 3.1.1
Cybozu Garoon 3.7.5
Cybozu Garoon 4.0.0
Cybozu Garoon 4.0.1
Cybozu Garoon 4.0.2
Cybozu Garoon 3.5.2
Cybozu Garoon 3.5.3
Cybozu Garoon 3.5.4
Cybozu Garoon 3.5.5
Cybozu Garoon 3.0.0
Cybozu Garoon 3.1.3
Cybozu Garoon 3.5.1
Cybozu Garoon 3.7.0
Cybozu Garoon 3.7.2
Cybozu Garoon 3.7.4
Cybozu Garoon 4.0.3
Cybozu Garoon 4.2.1
Cybozu Garoon 3.0.1
Cybozu Garoon 3.1.2
8.8
CVSSv3
CVE-2016-7803
SQL injection vulnerability in the Cybozu Garoon 3.0.0 to 4.2.2 allows remote authenticated malicious users to execute arbitrary SQL commands via "MultiReport" function.
Cybozu Garoon 3.0.0
Cybozu Garoon 3.7.0
Cybozu Garoon 3.7.1
Cybozu Garoon 3.7.2
Cybozu Garoon 3.7.3
Cybozu Garoon 3.1.1
Cybozu Garoon 3.1.2
Cybozu Garoon 3.1.3
Cybozu Garoon 3.5.0
Cybozu Garoon 4.0.2
Cybozu Garoon 4.0.3
Cybozu Garoon 4.2.0
Cybozu Garoon 4.2.1
Cybozu Garoon 3.0.1
Cybozu Garoon 3.0.3
Cybozu Garoon 3.5.2
Cybozu Garoon 3.5.4
Cybozu Garoon 3.7.5
Cybozu Garoon 4.0.1
Cybozu Garoon 4.2.2
Cybozu Garoon 3.0.2
Cybozu Garoon 3.1.0
8.8
CVSSv3
CVE-2016-1218
SQL injection vulnerability in Cybozu Garoon prior to 4.2.2.
Cybozu Garoon
6.5
CVSSv3
CVE-2016-7802
Directory traversal vulnerability in Cybozu Garoon 3.0.0 to 4.2.2 allows remote authenticated malicious users to read arbitrary files via unspecified vectors.
Cybozu Garoon 3.0.2
Cybozu Garoon 3.0.3
Cybozu Garoon 3.1.0
Cybozu Garoon 3.1.1
Cybozu Garoon 3.7.5
Cybozu Garoon 4.0.0
Cybozu Garoon 4.0.1
Cybozu Garoon 4.0.2
Cybozu Garoon 3.5.3
Cybozu Garoon 3.5.4
Cybozu Garoon 3.5.5
Cybozu Garoon 3.7.0
Cybozu Garoon 3.0.0
Cybozu Garoon 3.1.3
Cybozu Garoon 3.5.1
Cybozu Garoon 3.7.2
Cybozu Garoon 3.7.4
Cybozu Garoon 4.0.3
Cybozu Garoon 4.2.1
Cybozu Garoon 3.0.1
Cybozu Garoon 3.1.2
Cybozu Garoon 3.5.0
6.1
CVSSv3
CVE-2017-2257
Cross-site scripting vulnerability in Cybozu Garoon 3.0.0 to 4.2.5 allows an malicious user to inject arbitrary web script or HTML via mail function.
Cybozu Garoon 3.7.3
Cybozu Garoon 4.0.3
Cybozu Garoon 4.2.2
Cybozu Garoon 3.5.1
Cybozu Garoon 3.5.2
Cybozu Garoon 3.5.3
Cybozu Garoon 3.5.4
Cybozu Garoon 4.2.4
Cybozu Garoon 3.0.0
Cybozu Garoon 3.1.1
Cybozu Garoon 3.1.3
Cybozu Garoon 3.7.0
Cybozu Garoon 3.7.2
Cybozu Garoon 3.0.1
Cybozu Garoon 3.0.2
Cybozu Garoon 3.0.3
Cybozu Garoon 3.1.0
Cybozu Garoon 3.7.4
Cybozu Garoon 3.7.5
Cybozu Garoon 4.0.1
Cybozu Garoon 4.0.2
Cybozu Garoon 4.2.0
6.1
CVSSv3
CVE-2016-4906
Cross-site scripting vulnerability in Cybozu Garoon 3.0.0 to 4.2.2 allows remote malicious users to inject arbitrary web script or HTML via "Messages" function of Cybozu Garoon Keitai.
Cybozu Garoon 3.0.0
Cybozu Garoon 3.5.5
Cybozu Garoon 3.7.0
Cybozu Garoon 3.7.1
Cybozu Garoon 3.7.2
Cybozu Garoon 3.1.1
Cybozu Garoon 3.1.2
Cybozu Garoon 3.1.3
Cybozu Garoon 3.5.0
Cybozu Garoon 4.0.2
Cybozu Garoon 4.0.3
Cybozu Garoon 4.2.0
Cybozu Garoon 4.2.1
Cybozu Garoon 3.0.1
Cybozu Garoon 3.0.3
Cybozu Garoon 3.5.2
Cybozu Garoon 3.5.4
Cybozu Garoon 3.7.3
Cybozu Garoon 3.7.5
Cybozu Garoon 4.0.1
Cybozu Garoon 4.2.2
Cybozu Garoon 3.0.2
6.1
CVSSv3
CVE-2016-1213
The "Scheduler" function in Cybozu Garoon prior to 4.2.2 allows remote malicious users to redirect users to arbitrary websites.
Cybozu Garoon
6.1
CVSSv3
CVE-2016-1214
Cross-site scripting (XSS) vulnerability in the "Response request" function in Cybozu Garoon prior to 4.2.2.
Cybozu Garoon
6.1
CVSSv3
CVE-2016-1215
Cross-site scripting (XSS) vulnerability in the "User details" function in Cybozu Garoon prior to 4.2.2.
Cybozu Garoon
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »