Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cybozu garoon 2.1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-6001
SQL injection vulnerability in the Space function in Cybozu Garoon prior to 3.7 SP1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Cybozu Garoon 3.1
Cybozu Garoon 3.0
Cybozu Garoon 2.1
Cybozu Garoon 2.5
Cybozu Garoon 3.5
Cybozu Garoon 2.0
Cybozu Garoon
NA
CVE-2013-6002
The server in Cybozu Garoon prior to 3.7 SP1 allows remote malicious users to cause a denial of service (CPU consumption) via unspecified vectors.
Cybozu Garoon 3.1
Cybozu Garoon 3.0
Cybozu Garoon 2.5
Cybozu Garoon
Cybozu Garoon 2.0
Cybozu Garoon 2.1
Cybozu Garoon 3.5
NA
CVE-2013-6911
Cross-site scripting (XSS) vulnerability in the bulletin-board component in Cybozu Garoon prior to 3.7.2, when Internet Explorer or Firefox is used, allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Cybozu Garoon 3.5
Cybozu Garoon 3.0
Cybozu Garoon 2.0
Cybozu Garoon 2.1
Cybozu Garoon 2.5
Cybozu Garoon
Cybozu Garoon 3.7
Cybozu Garoon 3.1
NA
CVE-2013-6912
Cross-site scripting (XSS) vulnerability in a calendar component in Cybozu Garoon prior to 3.7.2, when Internet Explorer 6 through 9 is used, allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Cybozu Garoon 3.5
Cybozu Garoon 3.0
Cybozu Garoon 2.1
Cybozu Garoon 2.5
Cybozu Garoon 3.7
Cybozu Garoon 3.1
Cybozu Garoon 2.0
Cybozu Garoon
NA
CVE-2013-6913
Cross-site scripting (XSS) vulnerability in a search component in Cybozu Garoon prior to 3.7.2, when Internet Explorer is used, allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Cybozu Garoon 3.7
Cybozu Garoon 3.5
Cybozu Garoon 3.1
Cybozu Garoon 2.0
Cybozu Garoon 2.5
Cybozu Garoon 3.0
Cybozu Garoon 2.1
Cybozu Garoon
NA
CVE-2013-6914
Cross-site scripting (XSS) vulnerability in a calendar component in Cybozu Garoon prior to 3.7.2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Cybozu Garoon 3.5
Cybozu Garoon 3.1
Cybozu Garoon 2.1
Cybozu Garoon 2.5
Cybozu Garoon 3.0
Cybozu Garoon 2.0
Cybozu Garoon
Cybozu Garoon 3.7
NA
CVE-2013-6915
Cross-site scripting (XSS) vulnerability in the system-administration component in Cybozu Garoon prior to 3.7.2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Cybozu Garoon 3.5
Cybozu Garoon 3.1
Cybozu Garoon 2.1
Cybozu Garoon 2.0
Cybozu Garoon 2.5
Cybozu Garoon 3.7
Cybozu Garoon 3.0
Cybozu Garoon
NA
CVE-2013-6916
Cross-site scripting (XSS) vulnerability in the Yahoo! User Interface Library in Cybozu Garoon prior to 3.7.2, when Internet Explorer 9 or 10 or Chrome is used, allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Cybozu Garoon
Cybozu Garoon 3.5
Cybozu Garoon 3.1
Cybozu Garoon 2.0
Cybozu Garoon 2.1
Cybozu Garoon 3.0
Cybozu Garoon 2.5
Cybozu Garoon 3.7
NA
CVE-2013-6004
Session fixation vulnerability in Cybozu Garoon prior to 3.7.2 allows remote malicious users to hijack web sessions via unspecified vectors.
Cybozu Garoon 3.5
Cybozu Garoon 3.0
Cybozu Garoon
Cybozu Garoon 3.7
Cybozu Garoon 2.0
Cybozu Garoon 3.1
Cybozu Garoon 2.1
Cybozu Garoon 2.5
NA
CVE-2014-0817
Cybozu Garoon 2.x up to and including 2.5.4 and 3.x up to and including 3.7 SP3 does not properly manage sessions, which allows remote authenticated users to impersonate arbitrary users via unspecified vectors.
Cybozu Garoon 2.0
Cybozu Garoon 2.1.0
Cybozu Garoon 2.1.1
Cybozu Garoon 2.1.2
Cybozu Garoon 2.1.3
Cybozu Garoon 2.5.3
Cybozu Garoon 2.5.1
Cybozu Garoon 2.0.1
Cybozu Garoon 2.1
Cybozu Garoon 2.5
Cybozu Garoon 2.0.3
Cybozu Garoon 2.0.4
Cybozu Garoon 2.0.5
Cybozu Garoon 2.0.6
Cybozu Garoon 2.5.0
Cybozu Garoon 2.5.2
Cybozu Garoon 2.5.4
Cybozu Garoon 2.0.0
Cybozu Garoon 2.0.2
Cybozu Garoon 3.1
Cybozu Garoon 3.5
Cybozu Garoon 3.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »