Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
egroupware egroupware 1.4.001 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-3313
phpgwapi/js/fckeditor/editor/dialog/fck_spellerpages/spellerpages/serverscripts/spellchecker.php in EGroupware 1.4.001+.002; 1.6.001+.002 and possibly other versions prior to 1.6.003; and EPL 9.1 prior to 9.1.20100309 and 9.2 prior to 9.2.20100309; allows remote malicious users t...
Egroupware Egroupware 9.1
Egroupware Egroupware 1.4.001+.002
Egroupware Egroupware 1.6.001
Egroupware Egroupware 1.6.001+.002
Egroupware Egroupware 1.6.002
Egroupware Egroupware 9.2
Egroupware Egroupware 1.4.001
Egroupware Egroupware 1.4.002
1 EDB exploit
NA
CVE-2010-3314
Cross-site scripting (XSS) vulnerability in login.php in EGroupware 1.4.001+.002; 1.6.001+.002 and possibly other versions prior to 1.6.003; and EPL 9.1 prior to 9.1.20100309 and 9.2 prior to 9.2.20100309; allows remote malicious users to inject arbitrary web script or HTML via t...
Egroupware Egroupware 9.1
Egroupware Egroupware 1.4.001+.002
Egroupware Egroupware 1.6.001
Egroupware Egroupware 1.6.001+.002
Egroupware Egroupware 1.6.002
Egroupware Egroupware 9.2
Egroupware Egroupware 1.4.001
Egroupware Egroupware 1.4.002
1 EDB exploit
NA
CVE-2008-2041
Multiple unspecified vulnerabilities in eGroupWare prior to 1.4.004 have unspecified attack vectors and "grave" impact when the web server has write access to a directory under the web document root.
Egroupware Egroupware
Egroupware Egroupware 1.4.001
Egroupware Egroupware 1.4.002
NA
CVE-2007-5091
Multiple cross-site scripting (XSS) vulnerabilities in eGroupWare 1.4.001 allow remote malicious users to inject arbitrary web script or HTML via the cat_data[color] parameter to (1) preferences/inc/class.uicategories.inc.php and (2) admin/inc/class.uicategories.inc.php.
Egroupware Egroupware 1.4.001
NA
CVE-2008-1502
The _bad_protocol_once function in phpgwapi/inc/class.kses.inc.php in KSES, as used in eGroupWare prior to 1.4.003, Moodle prior to 1.8.5, and other products, allows remote malicious users to bypass HTML filtering and conduct cross-site scripting (XSS) attacks via a string contai...
Egroupware Egroupware 1.0
Moodle Moodle 1.5.2
Moodle Moodle 1.6.1
Moodle Moodle 1.8.2
Egroupware Egroupware
Moodle Moodle 1.2.1
Moodle Moodle 1.4.2
Moodle Moodle 1.6.5
Moodle Moodle 1.3.3
Moodle Moodle 1.4.3
Egroupware Egroupware 1.0.6
Moodle Moodle 1.4.5
Moodle Moodle 1.7.6
Moodle Moodle 1.6.2
Moodle Moodle 1.7.1
Moodle Moodle
Egroupware Egroupware 1.2.106-2
Moodle Moodle 1.8.3
Moodle Moodle 1.3.2
Egroupware Egroupware 1.0.3
Moodle Moodle 1.6.4
Moodle Moodle 1.1.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started