Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cybozu cybozu office vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-5314
Buffer overflow in Cybozu Office 9 and 10 prior to 10.1.0, Mailwise 4 and 5 prior to 5.1.4, and Dezie 8 prior to 8.1.1 allows remote authenticated users to execute arbitrary code via e-mail messages.
Cybozu Office 9.0
Cybozu Office
Cybozu Dezie
Cybozu Mailwise 4.0
Cybozu Mailwise
NA
CVE-2011-1335
Cross-site scripting (XSS) vulnerability in Cybozu Office 6, 7, and 8 prior to 8.1.1 allows remote malicious users to inject arbitrary web script or HTML via vectors related to the "address book and user list functions."
Cybozu Office 6
Cybozu Office 7
Cybozu Office 8
NA
CVE-2010-2029
Cybozu Office 7 Ktai and Dotsales do not properly restrict access to the login page, which allows remote malicious users to bypass authentication and obtain or modify sensitive information by using the unique ID of the user's cell phone.
Cybozu Cybozu Office 7
Cybozu Cybozu Dotsales
NA
CVE-2011-2677
Cybozu Office prior to 8.0.0 allows remote authenticated users to bypass intended access restrictions and access sensitive information (time card and attendance) via unspecified vectors related to manipulation of a URL.
Cybozu Office 6
Cybozu Office
NA
CVE-2006-4490
Multiple directory traversal vulnerabilities in Cybozu Office prior to 6.6 Build 1.3 and Share 360 prior to 2.5 Build 0.3 allow remote authenticated users to read arbitrary files via a .. (dot dot) sequence via the id parameter in (1) scripts/cbag/ag.exe or (2) scripts/s360v2/s36...
Cybozu Cybozu Office
Cybozu Share 360
1 EDB exploit
6.5
CVSSv3
CVE-2016-1153
customapp in Cybozu Office 9.9.0 up to and including 10.3.0 allows remote authenticated users to cause a denial of service via unspecified vectors, a different vulnerability than CVE-2015-8489.
Cybozu Office 10.3.0
Cybozu Office 9.9.0
NA
CVE-2013-3656
Cybozu Office 9.1.0 and previous versions does not properly manage sessions, which allows remote malicious users to bypass authentication by leveraging knowledge of a login URL.
Cybozu Cybozu Office
NA
CVE-2006-4492
Unspecified vulnerability in Cybozu Office 6.5 Build 1.2 for Windows allows remote malicious users to obtain sensitive information, including users and groups, via unspecified vectors.
Cybozu Cybozu Office 6.5 Build 1.2
NA
CVE-2008-6744
Cross-site request forgery (CSRF) vulnerability in Cybozu Office 6, Cybozu Dezie prior to 6.0(1.0), and Cybozu Garoon 2.0.0 up to and including 2.1.3 allows remote malicious users to hijack the authentication of unspecified victims via unknown vectors.
Cybozu Cybozu Garoon 2.0.0
Cybozu Cybozu Garoon 2.1.3
Cybozu Cybozu Garoon 2.0.3
Cybozu Cybozu Garoon 2.0.2
Cybozu Cybozu Garoon 2.0.1
Cybozu Cybozu Office 6
Cybozu Cybozu Garoon 2.0.5
Cybozu Cybozu Garoon 2.0.4
Cybozu Cybozu Garoon 2.1.1
Cybozu Cybozu Garoon 2.0.6
Cybozu Cybozu Garoon 2.1.0
Cybozu Cybozu Garoon 2.1.2
Cybozu Cybozu Dezie
NA
CVE-2011-1333
Cross-site scripting (XSS) vulnerability in Cybozu Office 6 and Cybozu Garoon 2.0.0 up to and including 2.1.3 allows remote malicious users to inject arbitrary web script or HTML via vectors related to "downloading graphic files from the bulletin board system."
Cybozu Garoon 2.1.2
Cybozu Garoon 2.0.5
Cybozu Garoon 2.0.4
Cybozu Garoon 2.1.1
Cybozu Garoon 2.0.1
Cybozu Garoon 2.0.3
Cybozu Garoon 2.0.0
Cybozu Garoon 2.1.3
Cybozu Garoon 2.0.6
Cybozu Garoon 2.1.0
Cybozu Garoon 2.0.2
Cybozu Office 6
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »