Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cybozu office vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2016-1151
Multiple cross-site request forgery (CSRF) vulnerabilities in Cybozu Office 9.9.0 up to and including 10.3.0 allow remote malicious users to hijack the authentication of arbitrary users.
Cybozu Office 10.3.0
Cybozu Office 10.0.1
Cybozu Office 10.0.2
Cybozu Office 10.1.0
Cybozu Office 10.1.2
Cybozu Office 10.0.0
Cybozu Office 10.2.0
Cybozu Office 9.9.0
7.5
CVSSv3
CVE-2018-0703
Directory traversal vulnerability in Cybozu Office 10.0.0 to 10.8.1 allows remote malicious users to delete arbitrary files via HTTP requests.
Cybozu Office
7.5
CVSSv3
CVE-2018-0704
Directory traversal vulnerability in Cybozu Office 10.0.0 to 10.8.1 allows remote malicious users to delete arbitrary files via Keitai Screen.
Cybozu Office
7.4
CVSSv3
CVE-2015-8483
Open redirect vulnerability in Cybozu Office 10.2.0 up to and including 10.3.0 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a crafted URL.
Cybozu Office 9.9.0
Cybozu Office 10.2.0
Cybozu Office 10.0.0
Cybozu Office 9.3.1
Cybozu Office 9.2.1
Cybozu Office 9.2.0
Cybozu Office 9.1.0
Cybozu Office 9.0
Cybozu Office 10.1.2
Cybozu Office 10.1.0
Cybozu Office 10.0.2
Cybozu Office 10.0.1
Cybozu Office 10.3.0
Cybozu Office 9.3.2
Cybozu Office 9.3.0
6.5
CVSSv3
CVE-2022-32453
HTTP header injection vulnerability in Cybozu Office 10.0.0 to 10.8.5 may allow a remote malicious user to obtain and/or alter the data of the product via unspecified vectors.
Cybozu Office
6.5
CVSSv3
CVE-2021-20624
Improper access control vulnerability in Scheduler of Cybozu Office 10.0.0 to 10.8.4 allows an authenticated malicious user to bypass access restriction and alter the data of Scheduler via unspecified vectors.
Cybozu Office
6.5
CVSSv3
CVE-2021-20631
Improper input validation vulnerability in Custom App of Cybozu Office 10.0.0 to 10.8.4 allows authenticated malicious user to alter the data of Custom App via unspecified vectors.
Cybozu Office
6.5
CVSSv3
CVE-2021-20626
Improper access control vulnerability in Workflow of Cybozu Office 10.0.0 to 10.8.4 allows authenticated malicious users to bypass access restriction and alter the data of Workflow via unspecified vectors.
Cybozu Office
6.5
CVSSv3
CVE-2019-6022
Directory traversal vulnerability in Cybozu Office 10.0.0 to 10.8.3 allows remote authenticated malicious users to alter arbitrary files via the 'Customapp' function.
Cybozu Office
6.5
CVSSv3
CVE-2016-4869
Cybozu Office 9.0.0 to 10.4.0 allow remote malicious users to obtain session information via a page where CGI environment variables are displayed.
Cybozu Office 10.4.0
Cybozu Office 10.0.0
Cybozu Office 9.0
Cybozu Office 9.1.0
Cybozu Office 9.2.0
Cybozu Office 10.0.1
Cybozu Office 10.0.2
Cybozu Office 9.2.1
Cybozu Office 9.3.0
Cybozu Office 10.1.0
Cybozu Office 10.1.2
Cybozu Office 9.3.1
Cybozu Office 9.3.2
Cybozu Office 10.2.0
Cybozu Office 10.3.0
Cybozu Office 9.9.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »