Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cybozu garoon vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2019-5939
Cross-site scripting vulnerability in Cybozu Garoon 4.0.0 to 4.10.1 allows remote malicious users to inject arbitrary web script or HTML via the application 'Portal'.
Cybozu Garoon
356
VMScore
CVE-2021-20763
Operational restrictions bypass vulnerability in Portal of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated malicious user to obtain the data of Portal without the appropriate privilege.
Cybozu Garoon
383
VMScore
CVE-2021-20765
Cross-site scripting vulnerability in Bulletin of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote malicious user to inject an arbitrary script via unspecified vectors.
Cybozu Garoon
356
VMScore
CVE-2021-20768
Operational restrictions bypass vulnerability in Scheduler and MultiReport of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated malicious user to delete the data of Scheduler and MultiReport without the appropriate privilege.
Cybozu Garoon
NA
CVE-2023-26595
Denial-of-service (DoS) vulnerability in Message of Cybozu Garoon 4.10.0 to 5.9.2 allows a remote authenticated malicious user to cause a denial of service condition.
Cybozu Garoon
490
VMScore
CVE-2022-26368
Browse restriction bypass and operation restriction bypass vulnerability in Cabinet of Cybozu Garoon 4.0.0 to 5.5.1 allows a remote authenticated malicious user to alter and/or obtain the data of Cabinet.
Cybozu Garoon
356
VMScore
CVE-2022-26051
Operation restriction bypass vulnerability in Portal of Cybozu Garoon 4.0.0 to 5.5.1 allows a remote authenticated malicious user to alter the data of Portal.
Cybozu Garoon
356
VMScore
CVE-2022-26054
Operation restriction bypass vulnerability in Link of Cybozu Garoon 4.0.0 to 5.5.1 allows a remote authenticated malicious user to alter the data of Link.
Cybozu Garoon
578
VMScore
CVE-2018-0530
SQL injection vulnerability in the Cybozu Garoon 3.5.0 to 4.2.6 allows remote authenticated malicious users to execute arbitrary SQL commands via unspecified vectors.
Cybozu Garoon
356
VMScore
CVE-2018-0531
Cybozu Garoon 3.0.0 to 4.2.6 allows remote authenticated malicious users to bypass access restriction to view or alter an access privilege of a folder and/or notification settings via unspecified vectors.
Cybozu Garoon
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3201
CVE-2024-4779
CVE-2024-35090
CVE-2024-5084
hard-coded
CVE-2024-4985
HTML injection
CVE-2024-33655
local file inclusion
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »