Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
novell groupwise webaccess 6.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-0296
NOTE: this issue has been disputed by the vendor. The error module in Novell GroupWise WebAccess allows remote attackers who have not authenticated to read potentially sensitive information, such as the version, via an incorrect login and a modified (1) error or (2) modify parame...
Novell Groupwise 6.0
Novell Groupwise Webaccess 6.5
Novell Groupwise 6.5
Novell Groupwise Webaccess 6.0
NA
CVE-2005-2276
Cross-site scripting (XSS) vulnerability in Novell Groupwise WebAccess 6.5 before July 11, 2005 allows remote malicious users to inject arbitrary web script or HTML via an e-mail message with an encoded javascript URI (e.g. "jAvascript" in an IMG tag.
Novell Groupwise Webaccess 6.5
Novell Groupwise Webaccess 6.0
1 EDB exploit
NA
CVE-2012-0410
Directory traversal vulnerability in WebAccess in Novell GroupWise prior to 8.03 allows remote malicious users to read arbitrary files via the User.interface parameter.
Novell Groupwise 6.5.2
Novell Groupwise 6.5.3
Novell Groupwise 6.5
Novell Groupwise 7.02
Novell Groupwise 7.03
Novell Groupwise 7.0.3
Novell Groupwise 8.01
Novell Groupwise 7.0
Novell Groupwise 6.5.7
Novell Groupwise 5.5
Novell Groupwise 5.2
Novell Groupwise 7.01
Novell Groupwise 6.5.6
Novell Groupwise 6.5.4
Novell Groupwise 5.57e
Novell Groupwise 6.0
Novell Groupwise 7.0.4
Novell Groupwise 8.02
Novell Groupwise 8.0
Novell Groupwise
Novell Groupwise 6.0.1
Novell Groupwise 8.00
NA
CVE-2013-1086
Cross-site scripting (XSS) vulnerability in WebAccess in Novell GroupWise prior to 8.0.3 HP3, and 2012 before SP2, allows remote malicious users to inject arbitrary web script or HTML via vectors involving an onError attribute.
Novell Groupwise 2012
Novell Groupwise 8.03
Novell Groupwise 8.00
Novell Groupwise 8.02
Novell Groupwise 7.0
Novell Groupwise 7.0.4
Novell Groupwise 7.0.3
Novell Groupwise 7.02
Novell Groupwise 6.5
Novell Groupwise 7.03
Novell Groupwise 7.01
Novell Groupwise 5.57e
Novell Groupwise 5.5
Novell Groupwise 5.2
Novell Groupwise 8.0
Novell Groupwise 8.01
Novell Groupwise 6.5.6
Novell Groupwise 6.5.3
Novell Groupwise 6.5.4
Novell Groupwise 6.5.7
Novell Groupwise 6.0.1
Novell Groupwise
NA
CVE-2010-4715
Multiple directory traversal vulnerabilities in the (1) WebAccess Agent and (2) Document Viewer Agent components in Novell GroupWise prior to 8.02HP allow remote malicious users to read arbitrary files via unspecified vectors. NOTE: some of these details are obtained from third p...
Novell Groupwise 6.5
Novell Groupwise 6.5.2
Novell Groupwise 6.5.3
Novell Groupwise 6.5.4
Novell Groupwise 6.5.6
Novell Groupwise 8.0
Novell Groupwise 8.0.1
Novell Groupwise
Novell Groupwise 5.1
Novell Groupwise 5.5
Novell Groupwise 5.57e
Novell Groupwise 5.2
Novell Groupwise 4.1a
Novell Groupwise 6.0.1
Novell Groupwise 6.0
Novell Groupwise 7.0.2
Novell Groupwise 7.0.4
Novell Groupwise 7.0
Novell Groupwise 4.1
Novell Groupwise 5.0
Novell Groupwise 6.5.7
Novell Groupwise 7.0.3
1 EDB exploit
NA
CVE-2010-4714
Multiple stack-based buffer overflows in Novell GroupWise prior to 8.02HP allow remote malicious users to execute arbitrary code via a long HTTP Host header to (1) gwpoa.exe in the Post Office Agent, (2) gwmta.exe in the Message Transfer Agent, (3) gwia.exe in the Internet Agent,...
Novell Groupwise 4.1
Novell Groupwise 5.0
Novell Groupwise 6.0
Novell Groupwise 6.5
Novell Groupwise 6.5.7
Novell Groupwise 7.0.3
Novell Groupwise 7.0.1
Novell Groupwise 5.1
Novell Groupwise 5.5
Novell Groupwise 5.57e
Novell Groupwise 7.0
Novell Groupwise 6.5.2
Novell Groupwise 6.5.3
Novell Groupwise 6.5.4
Novell Groupwise 6.5.6
Novell Groupwise 8.0.1
Novell Groupwise
Novell Groupwise 5.2
Novell Groupwise 4.1a
Novell Groupwise 6.0.1
Novell Groupwise 7.0.2
Novell Groupwise 7.0.4
NA
CVE-2004-2336
Unknown vulnerability in Novell GroupWise and GroupWise WebAccess 6.0 up to and including 6.5, when running with Apache Web Server 1.3 for NetWare where Apache is loaded using GWAPACHE.CONF, allows remote malicious users to read directories and files on the server.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started