Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cybozu cybozu office vulnerabilities and exploits
(subscribe to this query)
9
CVSSv2
CVE-2014-5314
Buffer overflow in Cybozu Office 9 and 10 prior to 10.1.0, Mailwise 4 and 5 prior to 5.1.4, and Dezie 8 prior to 8.1.1 allows remote authenticated users to execute arbitrary code via e-mail messages.
Cybozu Office 9.0
Cybozu Office
Cybozu Dezie
Cybozu Mailwise 4.0
Cybozu Mailwise
4.3
CVSSv2
CVE-2011-1335
Cross-site scripting (XSS) vulnerability in Cybozu Office 6, 7, and 8 prior to 8.1.1 allows remote malicious users to inject arbitrary web script or HTML via vectors related to the "address book and user list functions."
Cybozu Office 6
Cybozu Office 7
Cybozu Office 8
5.8
CVSSv2
CVE-2010-2029
Cybozu Office 7 Ktai and Dotsales do not properly restrict access to the login page, which allows remote malicious users to bypass authentication and obtain or modify sensitive information by using the unique ID of the user's cell phone.
Cybozu Cybozu Office 7
Cybozu Cybozu Dotsales
5.5
CVSSv2
CVE-2011-2677
Cybozu Office prior to 8.0.0 allows remote authenticated users to bypass intended access restrictions and access sensitive information (time card and attendance) via unspecified vectors related to manipulation of a URL.
Cybozu Office 6
Cybozu Office
4
CVSSv2
CVE-2006-4490
Multiple directory traversal vulnerabilities in Cybozu Office prior to 6.6 Build 1.3 and Share 360 prior to 2.5 Build 0.3 allow remote authenticated users to read arbitrary files via a .. (dot dot) sequence via the id parameter in (1) scripts/cbag/ag.exe or (2) scripts/s360v2/s36...
Cybozu Cybozu Office
Cybozu Share 360
1 EDB exploit
6.8
CVSSv2
CVE-2016-1153
customapp in Cybozu Office 9.9.0 up to and including 10.3.0 allows remote authenticated users to cause a denial of service via unspecified vectors, a different vulnerability than CVE-2015-8489.
Cybozu Office 10.3.0
Cybozu Office 9.9.0
5.8
CVSSv2
CVE-2013-3656
Cybozu Office 9.1.0 and previous versions does not properly manage sessions, which allows remote malicious users to bypass authentication by leveraging knowledge of a login URL.
Cybozu Cybozu Office
5
CVSSv2
CVE-2006-4492
Unspecified vulnerability in Cybozu Office 6.5 Build 1.2 for Windows allows remote malicious users to obtain sensitive information, including users and groups, via unspecified vectors.
Cybozu Cybozu Office 6.5 Build 1.2
6.8
CVSSv2
CVE-2008-6744
Cross-site request forgery (CSRF) vulnerability in Cybozu Office 6, Cybozu Dezie prior to 6.0(1.0), and Cybozu Garoon 2.0.0 up to and including 2.1.3 allows remote malicious users to hijack the authentication of unspecified victims via unknown vectors.
Cybozu Cybozu Garoon 2.0.0
Cybozu Cybozu Garoon 2.1.3
Cybozu Cybozu Garoon 2.0.3
Cybozu Cybozu Garoon 2.0.2
Cybozu Cybozu Garoon 2.0.1
Cybozu Cybozu Office 6
Cybozu Cybozu Garoon 2.0.5
Cybozu Cybozu Garoon 2.0.4
Cybozu Cybozu Garoon 2.1.1
Cybozu Cybozu Garoon 2.0.6
Cybozu Cybozu Garoon 2.1.0
Cybozu Cybozu Garoon 2.1.2
Cybozu Cybozu Dezie
4.3
CVSSv2
CVE-2011-1333
Cross-site scripting (XSS) vulnerability in Cybozu Office 6 and Cybozu Garoon 2.0.0 up to and including 2.1.3 allows remote malicious users to inject arbitrary web script or HTML via vectors related to "downloading graphic files from the bulletin board system."
Cybozu Garoon 2.1.2
Cybozu Garoon 2.0.5
Cybozu Garoon 2.0.4
Cybozu Garoon 2.1.1
Cybozu Garoon 2.0.1
Cybozu Garoon 2.0.3
Cybozu Garoon 2.0.0
Cybozu Garoon 2.1.3
Cybozu Garoon 2.0.6
Cybozu Garoon 2.1.0
Cybozu Garoon 2.0.2
Cybozu Office 6
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4946
CVE-2024-30309
CVE-2024-4761
CVE-2024-30051
type confusion
memory leak
CVE-2024-30293
reflected XSS
CVE-2024-3126
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »