Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cybozu office vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-5314
Buffer overflow in Cybozu Office 9 and 10 prior to 10.1.0, Mailwise 4 and 5 prior to 5.1.4, and Dezie 8 prior to 8.1.1 allows remote authenticated users to execute arbitrary code via e-mail messages.
Cybozu Office 9.0
Cybozu Office
Cybozu Dezie
Cybozu Mailwise 4.0
Cybozu Mailwise
NA
CVE-2013-2305
Cross-site request forgery (CSRF) vulnerability in Cybozu Office prior to 8.1.6 and 9.x prior to 9.3.0, Cybozu Dezie prior to 8.0.7, and Cybozu Mailwise prior to 5.0.4 allows remote malicious users to hijack the authentication of arbitrary users for requests that change passwords...
Cybozu Cybozu Office 7
Cybozu Cybozu Office 9
Cybozu Cybozu Office 9.2.1
Cybozu Cybozu Office
Cybozu Cybozu Office 6
Cybozu Cybozu Dezie 8.0.0
Cybozu Cybozu Dezie 8.0.4
Cybozu Cybozu Dezie 8.0.2
Cybozu Cybozu Dezie
Cybozu Cybozu Dezie 8.0.5
Cybozu Cybozu Dezie 8.0.3
Cybozu Cybozu Dezie 8.0.1
Cybozu Mailwise
Cybozu Mailwise 3.0\\(0.2\\)
Cybozu Mailwise 3.0
Cybozu Mailwise 2.1
Cybozu Mailwise 1.0
Cybozu Mailwise 2.0
NA
CVE-2011-2677
Cybozu Office prior to 8.0.0 allows remote authenticated users to bypass intended access restrictions and access sensitive information (time card and attendance) via unspecified vectors related to manipulation of a URL.
Cybozu Office 6
Cybozu Office
6.5
CVSSv3
CVE-2016-1153
customapp in Cybozu Office 9.9.0 up to and including 10.3.0 allows remote authenticated users to cause a denial of service via unspecified vectors, a different vulnerability than CVE-2015-8489.
Cybozu Office 10.3.0
Cybozu Office 9.9.0
NA
CVE-2010-2029
Cybozu Office 7 Ktai and Dotsales do not properly restrict access to the login page, which allows remote malicious users to bypass authentication and obtain or modify sensitive information by using the unique ID of the user's cell phone.
Cybozu Cybozu Office 7
Cybozu Cybozu Dotsales
NA
CVE-2013-3656
Cybozu Office 9.1.0 and previous versions does not properly manage sessions, which allows remote malicious users to bypass authentication by leveraging knowledge of a login URL.
Cybozu Cybozu Office
NA
CVE-2006-4490
Multiple directory traversal vulnerabilities in Cybozu Office prior to 6.6 Build 1.3 and Share 360 prior to 2.5 Build 0.3 allow remote authenticated users to read arbitrary files via a .. (dot dot) sequence via the id parameter in (1) scripts/cbag/ag.exe or (2) scripts/s360v2/s36...
Cybozu Cybozu Office
Cybozu Share 360
1 EDB exploit
NA
CVE-2006-4492
Unspecified vulnerability in Cybozu Office 6.5 Build 1.2 for Windows allows remote malicious users to obtain sensitive information, including users and groups, via unspecified vectors.
Cybozu Cybozu Office 6.5 Build 1.2
6.5
CVSSv3
CVE-2021-20624
Improper access control vulnerability in Scheduler of Cybozu Office 10.0.0 to 10.8.4 allows an authenticated malicious user to bypass access restriction and alter the data of Scheduler via unspecified vectors.
Cybozu Office
6.1
CVSSv3
CVE-2021-20628
Cross-site scripting vulnerability in Address Book of Cybozu Office 10.0.0 to 10.8.4 allows remote malicious users to inject an arbitrary script via unspecified vectors. Note that this vulnerability occurs only when using Mozilla Firefox.
Cybozu Office
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »