Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
novell groupwise webaccess vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2012-0272
Cross-site scripting (XSS) vulnerability in the WebAccess component in Novell GroupWise 8.0 before Support Pack 3 allows remote malicious users to inject arbitrary web script or HTML via the merge parameter.
Novell Groupwise 8.00
Novell Groupwise 8.0
4.3
CVSSv2
CVE-2010-2778
Cross-site scripting (XSS) vulnerability in WebAccess in Novell GroupWise 7.x prior to 7.0 post-SP4 FTF and 8.x prior to 8.0 SP2 allows remote malicious users to inject arbitrary web script or HTML via a crafted message, related to a "Javascript XSS exploit."
Novell Groupwise 8.0
Novell Groupwise 7.0
10
CVSSv2
CVE-2003-1551
Unspecified vulnerability in Novell GroupWise 6 SP3 WebAccess before Revision F has unknown impact and attack vectors related to "malicious script."
Novell Groupwise
4.3
CVSSv2
CVE-2014-0611
Multiple cross-site scripting (XSS) vulnerabilities in WebAccess in Novell GroupWise 2012 before Support Pack 4 and 2014 before Support Pack 2 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Novell Groupwise
5
CVSSv2
CVE-2001-1232
GroupWise WebAccess 5.5 with directory indexing enabled allows a remote malicious user to view arbitrary directory contents via an HTTP request with a lowercase "get".
Novell Groupwise 5.5
4.3
CVSSv2
CVE-2010-2779
Cross-site scripting (XSS) vulnerability in WebAccess in Novell GroupWise 8.x prior to 8.0 SP2 allows remote malicious users to inject arbitrary web script or HTML via a crafted message, related to "replies."
Novell Groupwise 8.0
4.3
CVSSv2
CVE-2011-2661
Multiple cross-site scripting (XSS) vulnerabilities in WebAccess in Novell GroupWise 8.0 before HP3 allow remote malicious users to inject arbitrary web script or HTML via the (1) Directory.Item.name or (2) Directory.Item.displayName parameter.
Novell Groupwise 8.0
10
CVSSv2
CVE-2007-2171
Stack-based buffer overflow in the base64_decode function in GWINTER.exe in Novell GroupWise (GW) WebAccess prior to 7.0 SP2 allows remote malicious users to execute arbitrary code via long base64 content in an HTTP Basic Authentication request.
Novell Groupwise 7.0
NA
CVE-2010-2782
Novell Groupwise Webaccess - Stack Overflow
1 EDB exploit
5
CVSSv2
CVE-2004-2336
Unknown vulnerability in Novell GroupWise and GroupWise WebAccess 6.0 up to and including 6.5, when running with Apache Web Server 1.3 for NetWare where Apache is loaded using GWAPACHE.CONF, allows remote malicious users to read directories and files on the server.
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3